Code Dx Supported Environments (Plugins)
Stay in your environment
It’s hard enough for developers and engineers to fix the vulnerabilities your security team finds, so why make them leave their development environment to do it?
In an effort to provide teams involved at every level of development with the tools they need to secure their applications as much as possible (without making more work for them), Code Dx, Inc. has made sure their products integrate with popular development environments. Now developers can stay in Eclipse to address vulnerabilities, rather than use the cumbersome, unfamiliar interfaces some other tools provide.
Need help? Check out the complete installation guide for all our plugins.
Plugin for Eclipse IDE
Plugin for Eclipse IDE
Available through the Eclipse Marketplace, this plugin allows you to use Code Dx and perform security testing on your projects and manage software vulnerabilities without having to leave the Eclipse Development Environment. Code Dx scans your Java codebases for security and quality issues and prioritizes them for you.
A Code Dx project is required. To allow users access to the project, they must be assigned to the project where the user roles are consistent with those within Code Dx.
Eclipse Version Support:Â Kepler, Luna, Mars, Neon, and Oxygen
Platform Support:Â Windows, Mac, Linux/GTK
Plugin for Visual Studio
Plugin for Visual Studio
Available through the MSDN Visual Studio Gallery, this plugin allows you to scan your projects with Code Dx and manage your security vulnerability findings right from within Visual Studio. Code Dx scans your .NET codebases for security and quality issues and prioritizes them for you.
A Code Dx project is required. To allow users access to the project, they must be assigned to the project where the user roles are consistent with those within Code Dx.
VS Version Support: Visual Studio 2012 or greater
Platform Support: Windows
Please contact us with our Support form if you’re using an older VS version.
Plugin for TFS
Plugin for TFS
Visual Studio Team Services build and release extension to send artifacts to Code Dx.
Note that this extension requires a running Code Dx 2.0 server.
Works with: Team Services, Team Foundation Server
Plugin for Jenkins
Plugin for Jenkins
Available through the Jenkins Wiki, this plugin allows Jenkins to push source and build artifacts to Code Dx to analyze, consolidate, and display security vulnerability analysis results from Code Dx’s full suite of static application security testing tools.
A Code Dx project and an API key are required. The API key must have the create role for the project.
Plugin for Burp Suite
Plugin for Burp Suite
The Code Dx Burp Suite plugin provides a way to upload Burp Suite findings to your Code Dx server from within Burp Suite.
A Code Dx project and an API key are required. The API key must have the create role on the project it needs to interact with.
This section of the Plugins Guide explains how to install and use the Burp Suite plugin. For more information, you may visit our GitHub Repository. This plugin is open source and we welcome community involvement.
Plugin for IntelliJ
Plugin for IntelliJ
The Code Dx IntelliJ plugin streamlines the use of Code Dx within the IntelliJ IDE. Developers can push out new builds for Code Dx analyses and the results can be viewed from within the IDE.
A Code Dx project is required. To allow users access to the project, they must be assigned to the project where the user roles are consistent with those within Code Dx.
IntelliJ version support: 2017.2 or greater.
Plugin for OWASP ZAP
Plugin for OWASP ZAP
The Code Dx OWASP ZAP plugin provides a way to upload OWASP ZAP alerts to your Code Dx server from within OWASP ZAP.
A Code Dx project and an API key are required. The API key must have the create role for the project.
This section of the Plugins Guide explains how to install and use the OWASP ZAP plugin. For more information, you may visit our GitHub Repository. This plugin is open source and we welcome community involvement.