Badges
40 Points
3 Years
User Activity
Over 1 year ago
Replied to Rohit Sircar Which code scanning solution is scanning MuleSoft?
This tool is also known to work : https://fossa.com/
Over 1 year ago
Replied to Stephen Scott Which code scanning solution is scanning MuleSoft?
Let me chase up with one of my developers - we did this for a large consultancy who had existing subscriptions embedded into the ADO pipelines we built. I will check and get back to you .
Over 1 year ago
Replied to Rohit Sircar Which code scanning solution is scanning MuleSoft?
@Rohit Sircar MUnit, SonarQube are for testing/code quality - but not for jar and source vulnerability scanning...
Over 1 year ago
Answered a question: Which code scanning solution is scanning MuleSoft?
We also found this issue, related to the specific POM package for MuleSoft. Quite a few of the tools don't support this. We did however have some success with Fortify on Demand and mend.io WhiteSource.
