Updating security content

To enable the Fortify Extension for Visual Studio to scan with a locally installed OpenText SAST, you must have up-to-date security content. You can update Fortify security content from a configured server or from your local system.

To update security content:

1. From the Fortify extension menu, select Options.

2. In the left pane, select Security Content Management.

3. To update security content, you must provide the location of a locally installed OpenText SAST. If not already specified, do the following:

   1. Click Browse to the right of Fortify Executable Path.

   2. Navigate to the OpenText SAST installation folder.

      The default installation folder on Windows is: C:\Program Files\Fortify\Fortify_SCA_<version>.

   3. Click OK.

4. To update Fortify security content from a server, do the following:

   1. (Optional) From the Locale list, select the language you want for the Application Security content.

      By default, English is the selected language.

   2. Click Update.

   All existing security content is replaced with the Application Security content from the server.

5. To update Fortify security content from your local system, under Update Security Content from Local System, do the following:

   1. Click Fortify Security Content.

   2. Navigate to a Application Security content ZIP file, and then click Open.

6. Click OK to accept the update confirmation message.

All existing security content is replaced with the selected Application Security content. Any existing custom security content is unchanged.

See Also

Importing Custom Security Content

Configuring Security Content Updates