Configuration of a scan of an application code

You can use HCL OneTest Server to scan your application code for security vulnerabilities similar to using the HCL AppScan CodeSweep plugin to scan code in Visual Studio.

HCL OneTest Server is enabled to support scanning of your application code that is in a remote repository.

Before you commit your application code to the remote repository, you must complete certain tasks. See Considerations to scan an application code.

After you commit the assets to the remote repository, you must complete the following tasks:
  1. Log in to HCL OneTest Server.
  2. Open the project in your team space.
  3. Add the remote repository to your project.
  4. Open the Execution page, and then run a scan of the asset.
For detailed instructions, see Configuring a run to scan the application code.