https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx

Fortify SSC parser plugin to import Debricked SCA results for unified AppSec posture management
https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx

cyclonedx debricked fortify fortify-integration fortify-parser-plugin fortify-ssc

Last synced: about 1 month ago
JSON representation

Fortify SSC parser plugin to import Debricked SCA results for unified AppSec posture management

• Host: GitHub
• URL: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx
• Owner: fortify
• License: other
• Created: 2023-02-02T11:58:56.000Z (over 3 years ago)
• Default Branch: main
• Last Pushed: 2026-03-14T03:55:10.000Z (3 months ago)
• Last Synced: 2026-03-14T15:10:00.028Z (3 months ago)
• Topics: cyclonedx, debricked, fortify, fortify-integration, fortify-parser-plugin, fortify-ssc
• Language: Shell
• Homepage: https://debricked.com
• Size: 321 KB
• Stars: 2
• Watchers: 3
• Forks: 3
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • Changelog: CHANGELOG.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE.txt
  • Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

README

          
# Fortify SSC Parser Plugin for Debricked results 

[Fortify Application Security](https://www.microfocus.com/en-us/solutions/application-security) provides your team with solutions to empower [DevSecOps](https://www.microfocus.com/en-us/cyberres/use-cases/devsecops) practices, enable [cloud transformation](https://www.microfocus.com/en-us/cyberres/use-cases/cloud-transformation), and secure your [software supply chain](https://www.microfocus.com/en-us/cyberres/use-cases/securing-the-software-supply-chain). As the sole Code Security solution with over two decades of expertise and acknowledged as a market leader by all major analysts, Fortify delivers the most adaptable, precise, and scalable AppSec platform available, supporting the breadth of tech you use and integrated into your preferred toolchain. We firmly believe that your great code [demands great security](https://www.microfocus.com/cyberres/application-security/developer-security), and with Fortify, go beyond 'check the box' security to achieve that.

This Fortify SSC parser plugin allows for importing [CycloneDX](https://cyclonedx.org/) SBOM files generated by [Debricked](https://debricked.com/) into SSC. Two versions of this plugin are available:

* `fortify-ssc-parser-debricked-cyclonedx.jar`

	 * Parser plugin compatible with all recent SSC versions

	 * Debricked issues are displayed on the SSC Audit page only

* `fortify-ssc-22.2+-parser-debricked-cyclonedx.jar`

	 * Parser plugin compatible with SSC 22.2 and above

	 * Debricked issues are displayed on both SSC Audit page and SSC Open Source page

	 

## Resources

* **Usage**: [USAGE.md](USAGE.md)

* **Releases**: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/releases

    * _Development releases may be unstable or non-functional. The `*-thirdparty.zip` file is for informational purposes only and does not need to be downloaded._

* **Sample input files**: [sampleData](sampleData)

* **Source code**: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx

* **Automated builds**: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/actions

* **Contributing Guidelines**: [CONTRIBUTING.md](CONTRIBUTING.md)

* **Code of Conduct**: [CODE_OF_CONDUCT.md](CODE_OF_CONDUCT.md)

* **License**: [LICENSE.txt](LICENSE.txt)

* **Debricked website**: https://debricked.com/

* **CycloneDX website**: https://cyclonedx.org/

## Support

For general assistance, please join the [Fortify Community](https://community.opentext.com/cybersec/fortify/) to get tips and tricks from other users and the OpenText team.

 

OpenText customers can contact our world-class [support team](https://www.opentext.com/support/opentext-enterprise/) for questions, enhancement requests and bug reports. You can also raise questions and issues through your OpenText Fortify representative like Customer Success Manager or Technical Account Manager if applicable.

You may also consider raising questions or issues through the [GitHub Issues page](https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/issues) (if available for this repository), providing public visibility and allowing anyone (including all contributors) to review and comment on your question or issue. Note that this requires a GitHub account, and given public visibility, you should refrain from posting any confidential data through this channel. 

---

*[This document was auto-generated from README.template.md; do not edit by hand](https://github.com/fortify/shared-doc-resources/blob/main/USAGE.md)*