Command-line tools

OpenText SAST command-line tools enable you to manage OpenText Application Security Content, perform post-installation configurations, and monitor scans. These tools are located in <sast_install_dir>/bin. The tools for Windows are provided as .bat or .cmd files. The following table describes the command-line tools installed with OpenText SAST.

By default, log files for OpenText SAST tools are written to the following directory:

  • Windows: C:\Users\<username>\AppData\Local\Fortify\<tool_name>-<version>\log
  • Non-Windows: <userhome>/.fortify/<tool_name>-<version>/log
ToolDescriptionMore information
fortifyupdate

Compares installed security content to the current version and makes any required updates

About updating OpenText Application Security Content

FPRUtility

With this tool you can:

  • Merge audited projects
  • Verify FPR signatures

  • Display information from an FPR file

  • Combine or split source code files and audit projects into FPR files

  • Alter an FPR

OpenTextâ„¢ Application Security Tools Guide

scapostinstall

This tool enables you to migrate properties files from a previous version of OpenText SAST, specify a locale, and specify a proxy server for security content updates and for Application Security.

Running the post-install tool

SCAState

Provides state analysis information on the JVM during the analysis phase

Checking the scan status with SCAState

This section contains the following topics: