Rule properties

The properties for the fortify-sca.properties file in the following table apply to rules (and custom rules) and Rulepacks.

Property nameDescription

com.fortify.sca.DefaultRulesDir 

Sets the directory used to search for the OpenText provided encrypted rules files.

Value Type: String (path)

Default:
${com.fortify.Core}/config/rules

com.fortify.sca.RulesFile 

Specifies a custom Rulepack or directory. If you specify a directory, all of the files in the directory with the .bin and .xml extensions are included.

Value Type: String (path)

Default: (none)

Command-line option:-rules

com.fortify.sca.CustomRulesDir 

Sets the directory used to search for custom rules.

Value Type: String (path)

Default:
${com.fortify.Core}/config/customrules

com.fortify.sca.RulesFileExtensions 

Specifies a list of file extensions for rules files. Any files in <sast_install_dir>/Core/config/rules (or a directory specified with the -rules option) whose extension is in this list is included. The .bin extension is always included, regardless of the value of this property. The delimiter for this property is the system path separator.

Value Type: String

Default:.xml

com.fortify.sca.NoDefaultRules 

If set to true, rules from the default Rulepacks are not loaded. OpenText SAST processes the Rulepacks for description elements and language libraries, but no rules are processed.

Value Type: Boolean

Default: (none)

Command-line option:-no-default-rules

com.fortify.sca.NoDefaultIssueRules 

If set to true, disables rules in default Rulepacks that lead directly to issues. OpenText SAST still loads rules that characterize the behavior of functions. This can be helpful when creating custom issue rules.

Value Type: Boolean

Default: (none)

Command-line option: -no-default-issue-rules

com.fortify.sca.NoDefaultSourceRules 

If set to true, disables source rules in the default Rulepacks. This can be helpful when creating custom source rules.

Characterization source rules are not disabled.

Value Type: Boolean

Default: (none)

Command-line option:-no-default-source-rules

com.fortity.sca.NoDefaultSinkRules 

If set to true, disables sink rules in the default Rulepacks. This can be helpful when creating custom sink rules.

Characterization sink rules are not disabled.

Value Type: Boolean

Default: (none)

Command-line option:-no-default-sink-rules