Excluding dependencies
You can avoid translating specific dependencies by adding them to the appropriate property setting in the fortify-sca.properties file. Files specified in the following properties are not translated:
com.fortify.sca.skip.libraries.ES6com.fortify.sca.skip.libraries.jQuerycom.fortify.sca.skip.libraries.javascriptcom.fortify.sca.skip.libraries.typescript
Each property specifies a list of comma- or colon-separated file names (without path information).
The files specified in these properties apply to both local files and files on the internet. Suppose, for example, that the JavaScript code includes the following local file reference:
<script src="js/jquery-ui.js" type="text/javascript" charset="utf-8"></script>
By default, the com.fortify.sca.skip.libraries.jQuery property in the fortify-sca.properties file includes jquery-us.js, and therefore OpenText SAST does not translate the file shown in the previous example.
You can use regular expressions for the file names. Note that OpenText SAST automatically inserts the regular expression '(-?\d+\.\d+\.\d+)?' before .min.js or .js for each file name included in the com.fortify.sca.skip.libraries.jQuery property value.
You can also exclude local files or entire directories with the -exclude command-line option. For more information about this option, see Translation Options.
To provide a thorough analysis, dependent files are included in the translation even if the dependency is in a language that is disabled with the -disable-language option. For more information about the option to disable languages, see Translation Options).