Supported Environments

Code Dx application plugins

 

Stay in your environment

It’s hard enough for developers and engineers to fix the vulnerabilities your security team finds, so why make them leave their development environment to do it?

In an effort to provide teams involved at every level of development with the tools they need to secure their applications as much as possible (without making more work for them), Code Dx, Inc. has made sure their products integrate with popular development environments. Now developers can stay in Eclipse to address vulnerabilities, rather than use the cumbersome, unfamiliar interfaces some other tools provide.

Need help? Check out the complete installation guide for all our plugins.

Plugin for Eclipse IDE

Available through the Eclipse Marketplace, this plugin allows you to use Code Dx and perform security testing on your projects and manage software vulnerabilities without having to leave the Eclipse Development Environment. Code Dx scans your Java codebases for security and quality issues and prioritizes them for you.

A Code Dx project is required. To allow users access to the project, they must be assigned to the project where the user roles are consistent with those within Code Dx.

Eclipse Version Support: Neon, Mars, Luna, Kepler, and Oxygen
Platform Support: Windows, Mac, Linux/GTK

Plugin for MS Visual Studio

Available through the MSDN Visual Studio Gallery, this plugin allows you to scan your projects with Code Dx and manage your security vulnerability findings right from within Visual Studio. Code Dx scans your .NET codebases for security and quality issues and prioritizes them for you.

A Code Dx project is required. To allow users access to the project, they must be assigned to the project where the user roles are consistent with those within Code Dx.

VS Version Support: Visual Studio 2012 or greater
Platform Support: Windows

Please contact us with our Support form if you’re using an older VS version.

Plugin for Jenkins

Available through the Jenkins Wiki, this plugin allows Jenkins to push source and build artifacts to Code Dx to analyze, consolidate, and display security vulnerability analysis results from Code Dx’s full suite of static application security testing tools.

A Code Dx project and an API key are required. The API key must have the create role for the project.

Plugin for IntelliJ

The Code Dx IntelliJ plugin streamlines the use of Code Dx within the IntelliJ IDE. Developers can push out new builds for Code Dx analyses and the results can be viewed from within the IDE.

A Code Dx project is required. To allow users access to the project, they must be assigned to the project where the user roles are consistent with those within Code Dx.

IntelliJ version support: 2017.2 or greater.

Plugin for Burp Suite

The Code Dx Burp Suite plugin provides a way to upload Burp Suite findings to your Code Dx server from within Burp Suite.

A Code Dx project and an API key are required. The API key must have the create role on the project it needs to interact with.

This section of the Plugins Guide explains how to install and use the Burp Suite plugin. For more information, you may visit our GitHub Repository. This plugin is open source and we welcome community involvement.

Plugin for OWASP ZAP

The Code Dx OWASP ZAP plugin provides a way to upload OWASP ZAP alerts to your Code Dx server from within OWASP ZAP.

A Code Dx project and an API key are required. The API key must have the create role for the project.

This section of the Plugins Guide explains how to install and use the OWASP ZAP plugin. For more information, you may visit our GitHub Repository. This plugin is open source and we welcome community involvement.

Plugin for TFS

Visual Studio Team Services build and release extension to send artifacts to Code Dx.
Note that this extension requires a running Code Dx 2.0 server.

Works with: Team Services, Team Foundation Server