Code Dx 2.5.8

Code Dx 2.5.8 8/17/2017

What’s different since v2.5.7


  • All Made a change such that analyses will fail if result ingestion fails


  • All Fixed an issue that may cause rules to display in the tool filter when importing Code Dx XML reports
  • All Fixed an issue causing faulty descriptors to be created when importing Code Dx XML reports
  • All Fixed a bug causing obsolete path entries to be maintained in an in-memory cache
  • All Fixed a bug causing incorrect counts in the tool filter under certain circumstances


  • All Update bundled Gendarme to use Mono.Cecil version to v0.9.6

Code Dx 2.5.7

Code Dx 2.5.7 7/20/2017

What’s different since v2.5.6


  • All Fixed an issue where PDF report generation may fail when result details are enabled
  • Enterprise Fixed a bug causing the ‘OK’ button to be disabled for Sonatype tool connector configuration when the stage is set to ‘Any’

Code Dx 2.5.6

Code Dx 2.5.6 7/19/2017

What’s different since v2.5.5


  • All Fix an issue where analysis may fail after uploading new source code

Code Dx 2.5.5

Code Dx 2.5.5 7/14/2017

What’s different since v2.5.4


  • All Added raw location to result details in PDF report
  • Enterprise Added options to disable page header and footer in PDF report


  • All Fixed a bug causing source to be archived erroneously when auto-archive is enabled
  • All Fixed an issue causing tool connectors to potentially still be run after project deletion
  • All Fixed an issue causing finding locations to not be updated after uploading source code
  • All Fixed an issue causing project deletion to fail occasionally

Code Dx 2.5.4

Code Dx 2.5.4 7/6/2017

What’s different since v2.5.3


  • All Fixed a bug causing results not to be de-activated when archiving inputs with descendants
  • All Fixed an issue causing content to overrun page bounds on the PDF report
  • All Fixed an issue where correlation fails for results with no valid descriptor data

Code Dx 2.5.3

Code Dx 2.5.3 6/30/2017

What’s different since v2.5.2


  • All Correlate component analysis findings by component filename
  • All Add location display to evidence section


  • All Fix an issue where job failures weren’t always being caught
  • All Made a CSS tweak to address a Chrome rendering bug on the findings table

Code Dx 2.5.2

Code Dx 2.5.2 6/26/2017

What’s different since v2.5.1



  • All Added a confirmation when deleting a rule set in use by one or more projects
  • All Changed permissions for rule set modifications to require admin privileges



  • All – Added some missing detection method mappings for Code Dx 2.0 XML format
  • All – Fixed an issue that may cause the recorrelation prompt to not show up
  • All – Fixed an issue causing archived tool results to re-appear when upgrading to version 2.5.x
  • All – Fixed a regression causing new finding IDs more often when re-correlating
  • All – Fixed an issue causing archived tool result triage status to be propagated to findings
  • Enterprise – Added logic to ensure hidden line number field is ignored for URL path types on manually entered results
  • Enterprise – Added logic to prevent manually entered results from being merged when correlation is disabled
  • Enterprise – Added logic to avoid creation of new findings when editing manually entered results
  • Enterprise – Improved result mapping when additional data is recorded from tool output files



  • Enterprise – Changed Veracode reader to record flaw ID and app ID in a more friendly format

Code Dx 2.5.0

Code Dx 2.5.0 6/7/2017 What’s different since v2.4.6 Additions All Added ability to customize filenames for generated reports All Added filtering option to the project...

Code Dx 2.4.5

Code Dx 2.4.5 4/26/2017 What’s different since v2.4.4 Fixes All Fixed an issue causing users not to be prompted to re-apply rule sets after making changes Enterprise...

Code Dx 2.4.4

Code Dx 2.4.4 4/14/2017 What’s different since v2.4.3 Additions All Added a project option to disable finding correlation Fixes All Fixed a potential stack overflow...