The site that you are currently viewing is a static version of the Software Factory documentation delivered with the

version v7.2.
For up-to-date documentation, see the latest version.

Secure

This section contains security implementation guides and tutorials for security tools configuration.

Black Duck SCA

How-to perform a scan and manage projects using Black Duck SCA

How to Enable GitLab Container Scanning

Enable GitLab Container Scanning on your project to identify vulnerabilities in your Docker images.

How to Enable GitLab DAST

Enable GitLab DAST on your project to scan a running web application for vulnerabilities.

How to Enable GitLab Dependency Scanning

Enable GitLab Dependency Scanning on your project to identify vulnerabilities in your dependencies.

How to Enable GitLab SAST

Enable GitLab SAST on your project to detect vulnerabilities in your source code.

How to Enable GitLab Secret Detection

Enable GitLab Secret Detection on your project to identify secrets committed to your repository.

GitLab secure repo

How to secure your GitLab repository

JFrog Generate SBOMs

Learn how to generate SBOMs with JFrog CLI, JFrog IDE and Xray.

JFrog Xray usage

How to use JFrog Xray

JFrog Xray Vulnerability Scan

How to detect, report and manage security vulnerabilities with JFrog Xray

Xray License Scanning

How to scan and validate your licenses with JFrog Xray