Search syntax
To indicate the type of comparison to perform, wrap search terms with delimiters. The following table describes the syntax to use for a search query.
| Comparison | Description |
|---|---|
contains | Searches for a term without any special qualifying delimiters |
equals | Searches for an exact match when the term is wrapped in quotation marks ( |
regex | Searches for values that match a Java-style regular expression delimited by a forward slash ( Example: |
number range | Searches for a range of numbers using the standard mathematical interval notation of parentheses and/or brackets to indicate whether the endpoints are excluded or included, respectively Example: |
not equal | Excludes issues specified by the string when you precede the string with the exclamation character ( Example: |
You can further qualify search terms with modifiers. The syntax for using a modifier is <modifier>:<search_term>.
A search query can contain multiple modifiers and search terms. If you specify more than one modifier, the search returns only issues that match all the modified search terms. For example, file:ApplicationContext.java category:SQL Injection returns only SQL injection issues found in ApplicationContext.java.
If you use the same modifier more than once in a search query, then the search terms qualified by those modifiers are treated as an OR comparison. For example, file:ApplicationContext.java category:SQL Injection category:Cross-Site Scripting returns SQL injection issues and cross-site scripting issues found in ApplicationContext.java.
For complex searches, you can also insert the AND or the OR keyword between your search queries. Note that AND and OR operations have the same priority in searches.
See Also