Has anyone run a Fortify scan on your project? I’ve tried running the following commands on a test project
sourceanalyzer -b mangoh -clean
sourceanalyzer -b mangoh -v touchless make red
sourceanalyzer -b mangoh -v -scan -f results.fpr
I tried adding,
com.fortify.sca.compilers.arm-poky-linux-gnueabi-gcc = com.fortify.sca.util.compilers.GccCompiler
com.fortify.sca.compilers.arm-poky-linux-gnueabi-gcc = com.fortify.sca.util.compilers.ArmCcCompiler
but have not had any luck translating it. Anyone here has experience with Fortify that could help? Thanks!