Initiating Scan
Once the FortiDevSec extension is installed successfully, perform the following steps to run security scan.
-
Login to FortiDevSec UI portal.
-
Add a new application. See Adding a New Application.
-
Download the fdevsec.yaml file.
-
Copy the downloaded fdevsec.yaml file to the root directory of your repository.
Note: Ensure that the Docker is running on your system.
-
Open your repository in VS Code.
-
Click FortiDevSec icon in the activity bar.
-
Click the Start Scan button to initiate the scan.
Note: Keep Visual Studio Code IDE open while the FortiDevSec scan runs. Closing VS Code IDE before the scan finishes prevents downloading results from the FortiDevSec cloud.
To pull the latest FortiDevSec scanner images, click the ellipsis menu in the Actions section and click Pull FortiDevSec Scanner Image.