Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

You can decide either to share your Custom Rules with the Community, or to reserve those Custom Rules to your company only.

DevOps CI/CD Integration 

Jenkins and Bamboo Plugins are part of Security Reviewer Suite.

Jenkins and Bamboo Plugins rely on user's infrastructure to run and support the respective platforms.

...

Using built-in design 9000+ validation rules, during Code Review process it can highlight violations and even suggest changes that would improve the structure of the system. it creates an abstract representation of the program, based on Dynamic Syntax Tree own patented algorithm.

...

The rule engine, with its internal multi-thread - optimized state - machine based on Dynamic Syntax Tree, is the fastest in the market, 52x faster than competitors. It does not need any internal or external RDBMS to run, and it is fully extensible via XML. Its unique capability to reconstruct an intended layering, makes it an invaluable tool for discovering the architecture of a vulnerability that has been injected in the source code, with very rare cases of False Positives.

Static Reviewer supports running in the below listed infrastructures:

Hosts

Virtualization Platforms

Containers Platforms

SCM Integrations

You can directly checkout (push) source code from the following SCM platforms:

The source code will be stored temporary in an encrypted folder and loaded in a secure buffer.

Analysis Results can be stored in the above SCM platforms.

...

Anchor
infrastructure
infrastructure
Infrastructure

The rule engine, with its internal multi-thread - optimized state - machine based on Dynamic Syntax Tree, is the fastest in the market, 52x faster than competitors. It does not need any internal or external RDBMS to run, and it is fully extensible via XML. Its unique capability to reconstruct an intended layering, makes it an invaluable tool for discovering the architecture of a vulnerability that has been injected in the source code, with very rare cases of False Positives.

Static Reviewer supports running in the below listed infrastructures:

Hosts

Virtualization Platforms

Containers Platforms

System Requirements

Desktop

2-Core CPU

4GB RAM

1TB Free space on Disk

Windows 10, 2008 R2, 2012 R2, 2016, 2019 

.NET Framework 4.7.2

WineHQ 5.11 on Linux environment

Every running analysis will take about 700MB RAM. You can run up to 5 analysis on the same desktop.

IDE

Please refer to you preferred IDE requirements, like Eclipse, Visual Studio, JetBrains, NetBeans

DevOps

In case of DevOps CI/CD integration please refer to Jenkins or Bamboo requirements.

REST API Server

8-Core CPU

16GB RAM

1TB Free space on Disk

Windows 2008 R2, 2012 R2, 2016, 2019

Oracle JDK 1.8_241

Apache Tomcat 8.5

You can run up to 20 simultaneous analyses on same server. Over 20 will be automatically queued.

Server architecture is scalable, you can add as servers as you want.

DevOps CI/CD Integration 

Jenkins and Bamboo Plugins are part of Security Reviewer Suite.

Jenkins and Bamboo Plugins rely on user's infrastructure to run and support the respective platforms.

...

Using built-in design 9000+ validation rules, during Code Review process it can highlight violations and even suggest changes that would improve the structure of the system. it creates an abstract representation of the program, based on Dynamic Syntax Tree own patented algorithm.

...

CI/CD Platforms Integrations

Cloud Platforms supported (CI Plugins):

File Servers

All our products can work accessing files on local file system, as well as the following File Sharing Systems:

  • Network File System (NFS)

  • Samba

  • FTP, TFTP, SFTP, FTP-S

  • UNC Paths

  • Permalinks

Relational Databases

Static Reviewer does not need RBDMS to run, and it is fully extensible via XML. It is able to analyze SQL code written on different SQL Dialects.

Our unified Dashboard, named Team Reviewer supports (configurable) the following RDBMS:

  • Oracle MySQL 5.6 or higher

  • Oracle Database RAC 12 or newer

  • Microsoft SQL Server 2012 or newer

  • PostgreSQL 9.0 and higher

  • Alpine H2 1.4.196 or newer

  • MariaDB 10.x

System Requirements

Desktop

2-Core CPU

4GB RAM

1TB Free space on Disk

Windows 10, 2008 R2, 2012 R2, 2016, 2019 

.NET Framework 4.7.2

WineHQ 5.6 on Linux environment

Every running analysis will take about 700MB RAM. You can run up to 5 analysis on the same desktop.

IDE

Please refer to you preferred IDE requirements, like Eclipse, Visual Studio, JetBrains, NetBeans

DevOps

In case of DevOps CI/CD integration please refer to Jenkins or Bamboo requirements.

REST API Server

8-Core CPU

16GB RAM

1TB Free space on Disk

Windows 2008 R2, 2012 R2, 2016, 2019

Oracle JDK 1.8_241

Apache Tomcat 8.5

You can run up to 20 simultaneous analyses on same server. Over 20 will be automatically queued.

...

SCM Integrations

You can directly checkout (push) source code from the following SCM platforms:

The source code will be stored temporary in an encrypted folder and loaded in a secure buffer.

Analysis Results can be stored in the above SCM platforms.

You can do that using our Jenkins plugin or directly from our Desktop app.

File Servers

All our products can work accessing files on local file system, as well as the following File Sharing Systems:

  • Network File System (NFS)

  • Samba

  • FTP, TFTP, SFTP, FTP-S

  • UNC Paths

  • Permalinks

Relational Databases

Static Reviewer does not need RBDMS to run, and it is fully extensible via XML. It is able to analyze SQL code written on different SQL Dialects.

Our unified Dashboard, named Team Reviewer supports (configurable) the following RDBMS:

  • Oracle MySQL 5.6 or higher

  • Oracle Database RAC 12 or newer

  • Microsoft SQL Server 2012 or newer

  • PostgreSQL 9.0 and higher

  • Alpine H2 1.4.196 or newer

  • MariaDB 10.x

Anchor
logging
logging
Logging

...