Skip to content
/ appscan-automation-framework Public

A framework for interacting with HCL AppScan on Cloud and HCL AppScan Enterprise

License

MIT license
11 stars 7 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

HCL-TECH-SOFTWARE/appscan-automation-framework

BranchesTags

Repository files navigation

AppScan Automation Framework

This framework makes it simple to interact with the APIs for HCL AppScan Enterprise and HCL AppScan on Cloud which can be used to automate tasks. This framework also contains pre-built modules that perform certain tasks that will be explained below.

Contributing

We would love to have you contribute to the AppScan Automation Framework. First, please review our Contribution Guide.

Issues

If you find issues/bug please open up an issue in the repo with your node version info along with the stack trace and the log files. Also, include which module you are trying to run and we will work on trying to resolve the issue.

License

Code is under the MIT License.

Getting Started

  1. Pull down this repo and in the root directory run:

     $ npm install

  2. Duplicate the configSample.js file in the config directory. Then rename it to config.js

  3. Update the fields in the config, to your appropriate settings. In the config you will see each modules names and then settings that are associated with that specific module. Those settings will be explained below for each module.

  4. Make sure to enter ASEURL, keyId, and KeySecret for AppScan Enterprise and/or AppScan on Cloud, which is done in the config.js.

  5. If you would like to install the AppScan Enterprise Proxy as a windows service run the startASEProxyAsAService.js script located in the scripts directory but make sure to update the encrypt.js file located in src\providers\ and replace encryptionKey with your own encryption key.****This is important!

Pre-Built Modules

Example pre-built modules are described here

Building Your Own Modules

We highly encourage the creation of new modules. When creating the new modules, the API integrations for the other services are located in src/provider. Make sure you import the appropriate provider in your modules to give you access to the APIs. The list of providers for tools:

HCL Application Security on cloud: ./provider/asoc
HCL AppScan Enterprise: ./provider/ase
AppScan Enterprise Proxy Server: ./provider/aseProxyServer

If you would like to contribute a new module please submit a pull request, so we can review it and add it to the project. If you would like to submit an enhancement for a new feature, please open up a new issue with the project with the details of the enhancement.

test6

About

A framework for interacting with HCL AppScan on Cloud and HCL AppScan Enterprise

Topics

cloud appscan hcl-appscan appscan-enterprise

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

11 stars

Watchers

7 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages