Formula components

Product administrators can use any of the following components in your attribute formulas.

Note: User role: Product Administrator

Operators

Operators are actions that you can use in formulas.

Table 1. Operators

Operators

Operator Description
+ (plus sign) Addition (5+1)
/ (forward slash) Division (6/3)
* (asterisk) Multiplication. (2*4)
- (minus sign) Subtraction. (9-2)
< (greater than sign) Greater than (x > y)
> (less than sign) Less than (y < x)
= (equal to sign) Equal to (x = y)
% (percent sign) Calculates the remainder of the division of 1 number by another.
() (parenthesis) Specifies that the expressions within the parenthesis are evaluated first. All other expressions are evaluated by using standard operator precedence.

Functions

Functions perform the calculations in formulas.

Table 2. Functions

Functions

Functions Options Description Examples
COUNT Counts the values that appear in your issues or applications grid layouts.

COUNT (issue filter) based on filters

If a scan has not run, the count is NULL and appears as an empty column. If the scan has run, the count is 0 or higher.

COUNT (status=open)
IF Determines whether expressions are true or false. If it is true, returns a specific value if it is true. If it is false, returns another value.

IF(logical_test, [value_if_true], [value_if_false])

IF(businessimpact > 1, 5, 0)
MAX
  • classification
  • severity
  • status
Returns the highest number from a list of numbers.

MAX (issue attribute, issue filter)

MAX (severity, status=open)

Filters

Filters are the issue attribute properties that appear as application column headers.

Table 3. Filters

Filters

Filter Option
classification definitive, suspect. A "classification finding" discovered by AppScan Source (static analysis).
severity critical, high, medium, low, information
status fixed, inprogress, reopened, noise, open, passed, new
discoverymethod dast (Dynamic Analysis), sast (Static Analysis)

Values

The formulas use several built-in attributes as predefined values. When you create and save a customized 'dropdown' or 'formula' attribute, the attribute also appears as a value you can use.
Table 4. Built-in Values

Built-in Values

Value Description
businessimpact dropdown values:
  • 0=Unspecified
  • 2=Low impact
  • 3=Medium impact
  • 4=High impact
  • 5=Critical impact
newissues formula:

COUNT(status=new,classification=definitive,classification=suspect)

criticalissues formula:

COUNT(status=new,status=open,status=reopened,status=inprogress,classification=definitive,classification=suspect,severity=critical)

highissues formula:

COUNT(status=new,status=open,status=reopened,status=inprogress,classification=definitive,classification=suspect,severity=high)

lowissues formula:

COUNT(status=new,status=open,status=reopened,status=inprogress,classification=definitive,classification=suspect,severity=low)

mediumissues formula:

COUNT(status=new,status=open,status=reopened,status=inprogress,classification=definitive,classification=suspect,severity=medium)

totalissues formula:

COUNT(status=new,status=open,status=reopened,status=inprogress,status=fixed,classification=definitive,classification=suspect,severity=critical,severity=high,severity=medium,severity=low)

openissues

COUNT(status=new,status=open,status=reopened,status=inprogress,classification=definitive,classification=suspect,severity=critical,severity=high,severity=medium,severity=low)

workinprogress formula:

COUNT(status=inprogress,classification=definitive,classification=suspect,severity=critical,severity=high,severity=medium,severity=low)

riskrating formula:

IF(businessimpact = 0, 0, IF(testingstatus > 0, 0, businessimpact * rr_maxseverity))

testingstatus dropdown values:
  • Not Started= 20
  • In Progress = 10
  • Completed = 0