Applying the AppScan Source for Development (Eclipse plug-in) to Eclipse and supported Eclipse-based products

Eclipse and Eclipse-based products include a feature that allows you to install new software. You can use the feature to update your installation or browse to plug-ins that you want to add to your installation. The instructions in this topic guide you through the application of the AppScan® Source for Development plug-in to Eclipse and Rational® Application Developer for WebSphere® Software (RAD).

Before you begin

To learn which versions of Eclipse and Rational Application Developer for WebSphere Software (RAD) are supported by AppScan Source, see HCL AppScan Source system requirements.

Procedure

  1. Select Help > Install New Software from the main workbench menu bar.
  2. In the Install dialog box Available Software page, click Add.
  3. In the Add Site dialog box (in some versions of Eclipse, the dialog box is named Add Repository), specify a name for the update site in the Name field.
  4. Follow these instructions for adding a site, depending on your operating system:
    1. Windows™ and Linux™: Click Local. In the Browse for Folder dialog box, navigate to the AppScan Source installation directory (see Default installation location). Click OK to return to the Add Site dialog box and then click OK to add the update site.
    2. macOS: In the Location field, enter file:/Applications/AppScanSource.app/ and then click OK to add the update site.
  5. The new site appears in the list. Complete this page according to your installation scenario:
    • Applying the plug-ins after a full product installation: Select the check box next to the HCL AppScan Source Security Analysis Feature local site.

      The application of the AppScan Source for Development Eclipse plug-in depends on the application of some Eclipse tools (the Graphical Editing Framework (GEF) and Draw2d). Most versions of Eclipse that are supported by AppScan Source for Development include these features. If yours does not, install these components into your Eclipse environment using the appropriate eclipse.org update site before installing AppScan Source for Development. Failure to do this may result in errors while applying the AppScan Source for Development plug-in to Eclipse.

    • Applying the plug-ins after a fix pack installation:
      • If you are applying the plug-ins to a development environment to which you had already applied previous versions of the plug-ins, select the check box next to the HCL AppScan Source Security Analysis Feature local site.
      • If you are applying the plug-ins to a development environment that does not already include the plug-ins, follow the above instructions for Applying the plug-ins after a full product installation.
      Note: The HCL AppScan Source Security Analysis Feature local site should include a client feature for the fix pack version that you are applying. If this feature is not present, it may be necessary to refresh or recreate the local site.

    Click Next to proceed to the next Install panel.

  6. In the Install Details page, review the items to be installed and then click Next.
  7. In the Review Licenses page, accept the license agreement and then click Finish.
  8. When prompted, restart Eclipse. The Security Analysis menu appears after the installation completes. The first time you attempt to use an AppScan Source action, a message will open asking if you want to use an AppScan Enterprise Server. If you do not use a server, you cannot access shared items such as filters, scan configurations, and custom rules. This setting can be changed later in the General Preferences.