Skip to content

Add Fortify Application Security Testing workflow #556

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Itsskell wants to merge 3 commits into from
Closed

Add Fortify Application Security Testing workflow #556

Itsskell wants to merge 3 commits into from
+134 −0

Conversation

@Itsskell
Copy link

@Itsskell Itsskell commented Jan 10, 2026

This workflow integrates Fortify Application Security Testing into GitHub workflows, enabling SAST and SCA scans.

@Itsskell
Add Fortify Application Security Testing workflow
1b2094c 
This workflow integrates Fortify Application Security Testing into GitHub workflows, enabling SAST and SCA scans.
Copilot AI review requested due to automatic review settings January 10, 2026 13:58
@changeset-bot
Copy link

changeset-bot bot commented Jan 10, 2026
edited
Loading

🦋 Changeset detected

Latest commit: 3978f6a

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package
Name Type
@changesets/action Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

Copilot AI reviewed Jan 10, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This pull request adds a GitHub Actions workflow for Fortify Application Security Testing, enabling automated SAST (Static Application Security Testing) and SCA (Software Composition Analysis) scans. The workflow is triggered on pushes to main, pull requests, weekly scheduled runs, and manual dispatches.

Changes:

  • Adds comprehensive Fortify AST scanning workflow with support for both Fortify on Demand and Software Security Center configurations
  • Configures security-events permissions for GitHub code scanning integration
  • Includes extensive configuration options for customizing scan behavior, policy checks, and reporting

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@Itsskell
Copy link
Author

Itsskell commented Jan 10, 2026

@copilot open a new pull request to apply changes based on the comments in this thread

Itsskell and others added 2 commits January 10, 2026 09:35
@Itsskell
Update .github/workflows/fortify.yml
0158942 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@Itsskell
Add Fortify Application Security Testing workflow
3978f6a
@Itsskell Itsskell closed this Jan 10, 2026
@Itsskell Itsskell reopened this Jan 10, 2026
@Itsskell
Copy link
Author

Itsskell commented Jan 10, 2026

Merge

Unrecognized86
Unrecognized86 approved these changes Jan 11, 2026
View reviewed changes
Copy link

@Unrecognized86 Unrecognized86 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes

@Itsskell
Copy link
Author

Itsskell commented Jan 30, 2026

@copilot open a new pull request to apply changes based on the comments in this thread

2 similar comments
@Itsskell
Copy link
Author

Itsskell commented Jan 31, 2026

@copilot open a new pull request to apply changes based on the comments in this thread

@Itsskell
Copy link
Author

Itsskell commented Feb 6, 2026

@copilot open a new pull request to apply changes based on the comments in this thread

@Itsskell Itsskell closed this Feb 6, 2026
@Itsskell
Copy link
Author

Itsskell commented Feb 6, 2026

@copilot open a new pull request to apply changes based on the comments in this thread

1 similar comment
@Itsskell
Copy link
Author

Itsskell commented Feb 6, 2026

@copilot open a new pull request to apply changes based on the comments in this thread

@Itsskell Itsskell reopened this Feb 6, 2026
@Itsskell Itsskell closed this Feb 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

+1 more reviewer

@Unrecognized86 Unrecognized86 Unrecognized86 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Itsskell @Unrecognized86