Configuring Detect General Properties 6.4.0
In Synopsys Detect, you use properties to configure how the scan runs.
This page describes properties that are more global or general in nature and not detector specific and the use and configuration of values that are assigned to those properties when used with Synopsys Detect.
Detect general properties
- 1 Black Duck property configuration
- 2 Black Duck Hub property configuration (Deprecated)
- 3 Cleanup property configuration
- 4 Detector property configuration
- 5 General property configuration
- 6 Logging property configuration
- 7 Path property configuration
- 8 Polaris property configuration (Deprecated)
- 9 Project information property configuration
- 10 Project property configuration
- 11 Proxy property configuration
- 12 Report property configuration
- 13 Signature scanner property configuration
Black Duck property configuration
Black Duck API token
--blackduck.api.token |
The Black Duck API token.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
The API token used to authenticate with the Black Duck Server.
Offline Mode
--blackduck.offline.mode=false |
Use to disable any Black Duck communication; if true, Detect will not upload BDIO files, it will not check policies, and it will not download and install the signature scanner.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Black Duck password
--blackduck.password |
Black Duck password
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Black Duck URL
URL of the Black Duck server
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Black Duck username
Black Duck username
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Report generation timeout
The amount of time in seconds Detect will wait for scans to finish and to generate reports (i.e. risk and policy check). When changing this value, keep in mind the checking of policies might have to wait for scans to process which can take some time.
Details | Values |
---|---|
Added | 5.2.0 |
Type | Long |
Default value | 300 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Test Connection to Black Duck
Test the connection to Black Duck with the current configuration.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Black Duck timeout (Advanced)
The time to wait for network connections to complete (in seconds).
Details | Values |
---|---|
Added | 4.2.0 |
Type | Integer |
Default value | 120 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Trust all SSL certificates (Advanced)
If true, automatically trust the certificate for the current run of Detect only.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Black Duck Hub property configuration (Deprecated)
Blackduck Hub Api token (Deprecated)
This is the Hub API Token.
DEPRECATED: This property is changing.
Use --blackduck.api.token in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub offline mode (Deprecated)
This disables any Hub communication. If true, Detect does not upload BDIO files, does not check policies, and does not download and install the signature scanner.
DEPRECATED: This property is changing.
Use --blackduck.offline.mode
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub password (Deprecated)
This is the Black Duck Hub password.
DEPRECATED: This property is changing.
Use --blackduck.password
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub proxy host (Deprecated)
This is the Hub proxy host.
DEPRECATED: This property is changing.
Use --blackduck.proxy.host
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub Proxy ignored hosts (Deprecated)
A comma-separated list of host patterns that should not use the proxy.
DEPRECATED: This property is changing.
Use --blackduck.proxy.ignored.hosts
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.2.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub proxy Ntlm domain (Deprecated)
This is the NTLM Proxy domain.
DEPRECATED: This property is changing. Please use --blackduck.proxy.ntlm.domain
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub proxy Ntlm workstation (Deprecated)
This is the NTLM Proxy workstation.
DEPRECATED: This property is changing.
Use --blackduck.proxy.ntlm.workstation
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub proxy password (Deprecated)
This is the proxy password.
DEPRECATED: This property is changing.
Use --blackduck.proxy.password
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub proxy port (Deprecated)
This is the proxy port.
DEPRECATED: This property is changing.
Use --blackduck.proxy.port
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub proxy username (Deprecated)
This is the proxy username.
DEPRECATED: This property is changing.
Use --blackduck.proxy.username
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub timeout (Deprecated)
The time to wait for rest connections to complete in seconds.
DEPRECATED: This property is changing.
Use --blackduck.timeout
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Integer |
Default value | 120 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub trust cert (Deprecated)
If true, automatically trusts the certificate for the current run of Detect only.
DEPRECATED: This property is changing.
Use --blackduck.trust.cert
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub URL (Deprecated)
This is the URL for the Hub server.
DEPRECATED: This property is changing.
Use --blackduck.url
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Blackduck Hub username (Deprecated)
This is the Hub username.
DEPRECATED: This property is changing.
Use --blackduck.username
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Check For valid Black Duck connection (Deprecated)
If true, during initialization Detect checks for Black Duck connectivity and exits with status code 0
if it cannot connect.
DEPRECATED: This property is changing.
Use --detect.ignore.connection.failures
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect disable without Hub (Deprecated)
If true, during initialization Detect will check for Hub connectivity and exit with status code 0 if it cannot connect.
DEPRECATED: This property is changing.
Use --detect.ignore.connection.failures
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Cleanup property configuration
Cleanup output
If true, the files created by Detect will be cleaned up.
Details | Values |
---|---|
Added | 3.2.0 |
Type | Boolean |
Default value | true |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector property configuration
Required Detect types
The set of required detectors.
If you want one or more detectors to be required (must be found to apply), use this property to specify the set of required detectors. If this property is set, and one (or more) of the given detectors is not found to apply, Detect will fail.
Details | Values |
---|---|
Added | 4.3.0 |
Type | DetectorType List |
Default value |
|
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | BITBAKE, CARGO, COCOAPODS, CONDA, CPAN, CRAN, GIT, GO_MOD, GO_DEP, GO_VNDR, GO_VENDOR, GO_GRADLE, GRADLE, HEX, MAVEN, NPM, NUGET, PACKAGIST, PEAR, PIP, RUBYGEMS, SBT, SWIFT, YARN, CLANG |
Strict | Yes |
Detector types excluded (Advanced)
By default, all detectors will be included. If you want to exclude specific detectors, specify the ones to exclude here. If you want to exclude all detectors, specify "ALL". Exclusion rules always win.
If Detect runs one or more detectors on your project that you would like to exclude, you can use this property to prevent Detect from running them.
Details | Values |
---|---|
Added | 3.0.0 |
Type | DetectorType List |
Default value |
|
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | ALL, NONE, BITBAKE, CARGO, COCOAPODS, CONDA, CPAN, CRAN, GIT, GO_MOD, GO_DEP, GO_VNDR, GO_VENDOR, GO_GRADLE, GRADLE, HEX, MAVEN, NPM, NUGET, PACKAGIST, PEAR, PIP, RUBYGEMS, SBT, SWIFT, YARN, CLANG |
Strict | Yes |
Detector types included (Advanced)
By default, all tools will be included. If you want to include only specific tools, specify the ones to include here. Exclusion rules always win.
If you want to limit Detect to a subset of its detectors, use this property to specify that subset.
Details | Values |
---|---|
Added | 3.0.0 |
Type | DetectorType List |
Default value |
|
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | ALL, NONE, BITBAKE, CARGO, COCOAPODS, CONDA, CPAN, CRAN, GIT, GO_MOD, GO_DEP, GO_VNDR, GO_VENDOR, GO_GRADLE, GRADLE, HEX, MAVEN, NPM, NUGET, PACKAGIST, PEAR, PIP, RUBYGEMS, SBT, SWIFT, YARN, CLANG |
Strict | Yes |
Detect excluded BOM tool types (Deprecated)
By default, all tools will be included. If you want to exclude specific detectors, specify the ones to exclude here. If you want to exclude all tools, specify ALL. Exclusion rules always win.
DEPRECATED: This property is changing.
Use --detect.excluded.detector.types in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect included BOM tool types (Deprecated)
By default, all tools will be included. If you want to include only specific tools, specify the ones to include here. Exclusion rules always win.
DEPRECATED: This property is changing.
Use --detect.included.detector.types
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect required BOM tool types (Deprecated)
If set, Detect will fail if it does not find the BOM tool types supplied here.
DEPRECATED: This property is changing.
Please use --detect.required.detector.types
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.3.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
General property configuration
Buildless mode
If set to true, only Detectors capable of running without a build will be run.
Details | Values |
---|---|
Added | 5.4.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Wait for results
If set to true, Detect will wait for Synopsys products until results are available or the detect.report.timeout is exceeded.
Details | Values |
---|---|
Added | 5.5.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Force success (Advanced)
If true, Detect will always exit with code 0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect ignore connection failures (Advanced)
If true, Detect will ignore any products that it cannot connect to. If true, when Detect attempts to boot a product it will also check if it can communicate with it - if it cannot, it will not run the product.
Details | Values |
---|---|
Added | 5.3.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect parallel processors (Advanced)
The number of threads to run processes in parallel, defaults to 1, but if you specify less than or equal to 0, the number of processors on the machine will be used.
Details | Values |
---|---|
Added | 6.0.0 |
Type | Integer |
Default value | 1 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Logging property configuration
Logging level
Detect logging level
Details | Values |
---|---|
Added | 5.3.0 |
Type | LogLevel |
Default value | INFO |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | OFF, ERROR, WARN, INFO, DEBUG, TRACE |
Strict | Yes |
Logging level shorthand
Shorthand for the logging level of Detect. Equivalent to setting logging.level.com.synopsys.integration.
Details | Values |
---|---|
Added | 5.5.0 |
Type | LogLevel |
Default value | INFO |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | OFF, ERROR, WARN, INFO, DEBUG, TRACE |
Strict | Yes |
Detect suppress configuration output (Deprecated)
If true, the default behavior of printing your configuration properties at startup will be suppressed.
DEPRECATED: This property is being removed.
Configuration can no longer be suppressed individually. Log level can be used. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect suppress results output (Deprecated)
If true, the default behavior of printing the Detect Results will be suppressed.
DEPRECATED: This property is being removed.
Results can no longer be suppressed individually. Log level can be used. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 6.0.0 |
Type | Integer |
Default value | 1 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Logging level (Deprecated)
The logging level of Detect.
DEPRECATED: This property is changing.
Use --logging.level.com.synopsys.integration
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | LogLevel |
Default value | INFO |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | OFF, ERROR, WARN, INFO, DEBUG, TRACE |
Strict | Yes |
Path property configuration
Bash executable
Path to the Bash executable.
If set, Detect will use the given Bash executable instead of searching for one.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
BDIO 2 enabled
The version of BDIO files to generate. If set to false, BDIO version 1 will be generated. If set to true, BDIO version 2 will be generated.
Details | Values |
---|---|
Added | 6.1.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
BDIO output directory
The path to the output directory for all BDIO files.
If not set, the BDIO files are placed in a BDIO subdirectory of the output directory.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector Search Depth
Depth of subdirectories within the source directory to which Detect searches for files that indicate whether a detector applies. A value of 0 (the default) tells Detect not to search any subdirectories, a value of 1 tells Detect to search first-level subdirectories.
Details | Values |
---|---|
Added | 3.2.0 |
Type | Integer |
Default value | 0 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Git executable
Path to the git executable.
Details | Values |
---|---|
Added | 5.5.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Java executable
Path to the java executable. If set, Detect will use the given java executable instead of searching for one.
Details | Values |
---|---|
Added | 5.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect output path
The path to the output directory. If set, Detect uses the given directory to store files that it downloads and creates, instead of using the default location (~/blackduck).
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Resolve tilde in paths
If set to false Detect will not automatically resolve the '~/' prefix in a Mac or Linux path to the user's home directory.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | true |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Scan output path
The output directory for all signature scanner output files. If not set, the signature scanner output files will be in a scan subdirectory of the output directory.
Details | Values |
---|---|
Added | 6.1.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Source path
The path to the project directory to inspect. Detect will search the given directory for hints that indicate which package manager(s) the project uses, and will attempt to run the corresponding detector(s).
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Swift executable
Path of the swift executable.
Details | Values |
---|---|
Added | 6.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect tools included
The tools Detect should allow in a comma-separated list. Tools in this list (as long as they are not also in the excluded list) will be allowed to run if all criteria of the tool is met. Exclusion rules always win. This property and detect.tools.excluded provide control over which tools Detect runs.
Details | Values |
---|---|
Added | 5.0.0 |
Type | DetectTool List |
Default value |
|
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | ALL, NONE, DETECTOR, SIGNATURE_SCAN, BINARY_SCAN, POLARIS, DOCKER, BAZEL |
Strict | Yes |
Detect tools excluded
The tools Detect should not allow, in a comma-separated list. Excluded tools will not be run even if all criteria for the tool are met. Exclusion rules always win. This property and detect.tools provide control over which tools Detect runs.
Details | Values |
---|---|
Added | 5.0.0 |
Type | DetectTool List |
Default value |
|
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | ALL, NONE, DETECTOR, SIGNATURE_SCAN, BINARY_SCAN, POLARIS, DOCKER, BAZEL |
Strict | Yes |
Detector search continue (Advanced)
If true, the BOM tool search will continue to look for nested BOM tools of the same type to the maximum search depth, see the detailed help for more information.
If true, Detect will find Maven projects that are in subdirectories of a Maven project and Gradle projects that are in subdirectories of Gradle projects, etc. If false, Detect will only find BOM tools in subdirectories of a project if they are of a different type such as an Npm project in a subdirectory of a Gradle project.
Details | Values |
---|---|
Added | 3.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector directory exclusions (Advanced)
A comma-separated list of directory names to exclude from detector search. While searching the source directory to determine which detectors to run, subdirectories whose name appears in this list will not be searched.
Details | Values |
---|---|
Added | 3.2.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector exclude default directories (Advanced)
If true, the BOM tool search will exclude the default directory names. See the detailed help for more information. If true, the following directories will be excluded from the detector search: bin, build, .git, .gradle, node_modules, out, packages, target.
Details | Values |
---|---|
Details | Values |
Added | 3.2.0 |
Type | Boolean |
Default value | true |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector file exclusions (Advanced)
A comma-separated list of file names to exclude from detector search.
Details | Values |
---|---|
Added | 6.0.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector directory path exclusions (Advanced)
A comma-separated list of directory paths to exclude from detector search, for example, foo/bar/biz will only exclude the biz directory if the parent directory structure is foo/bar/.
This property performs the same basic function as detect.detector.search.exclusion, but lets you be more specific.
Detector directory patterns exclusions (Advanced)
A comma-separated list of directory name patterns to exclude from detector search.
While searching the source directory to determine which detectors to run, subdirectories whose name match a pattern in this list will not be searched. These patterns are file system glob patterns ('?' is a wildcard for a single character, '*' is a wildcard for zero or more characters). For example, you're running in bash on Linux, you've set --detect.detector.search.depth = 1, and have a subdirectory named blackduck-common (a Gradle project) that you want to exclude from the detector search. Any of the following would exclude it:
--detect.detector.search.exclusion.patterns = blackduck-common
--detect.detector.search.exclusion.patterns = blackduck-common
--detect.detector.search.exclusion.patterns = blackduck-*
Details | Values |
---|---|
Added | 3.2.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project name/version detector (Advanced)
The detector that is used to determine the project name and version when there are multiple detector types. This property should be used with the detect.project.tool.
If Detect finds that multiple detectors apply, this property can be used to select the detector that will provide the project name and version. When using this property, you should also set detect.project.tool=DETECTOR
Details | Values |
---|---|
Added | 4.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detector tool priority (Advanced)
Details | Values |
---|---|
Added | 5.0.0 |
Type | DetectTool List |
Default value | DOCKER,DETECTOR,BAZEL |
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | DETECTOR, SIGNATURE_SCAN, BINARY_SCAN, POLARIS, DOCKER, BAZEL |
Strict | Yes |
Detect tools output path (Advanced)
The path to the tools directory where detect should download and/or access things like the Signature Scanner that it shares over multiple runs. If set, Detect will use the given directory instead of using the default location of output path plus tools.
Details | Values |
---|---|
Added | 5.6.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect BOM tool search continue (Deprecated)
If true, the BOM tool search will continue to look for nested BOM tools of the same type to the maximum search depth, see the detailed help for more information.
If true, Detect will find Maven projects that are in subdirectories of a Maven project and Gradle projects that are in subdirectories of Gradle projects, etc. If false, Detect will only find BOM tools in subdirectories of a project if they are of a different type such as an Npm project in a subdirectory of a Gradle project .
DEPRECATED: This property is changing.
Use --detect.detector.search.continue
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect BOM tool search depth (Deprecated)
Depth of subdirectories within the source directory to search for files that indicate whether a detector applies.
A value of 0 (the default) tells Detect not to search any subdirectories, a value of 1 tells Detect to search first-level subdirectories, etc.
DEPRECATED: This property is changing.
Use --detect.detector.search.depth
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.2.0 |
Type | Integer |
Default value | 0 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect BOM tool search exclusion (Deprecated)
A comma-separated list of directory names to exclude from the BOM tool search.
DEPRECATED: This property is changing.
Use --detect.detector.search.exclusion
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.2.0 |
Type | String list |
Default value | 0 |
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect BOM tool search exclusion defaults (Deprecated)
If true, the BOM tool search will exclude the default directory names. See the detailed help for more information. If true, these directories will be excluded from the BOM tool search: bin, build, .git, .gradle, node_modules, out, packages, target.
DEPRECATED: This property is changing.
Use --detect.detector.search.exclusion.defaults
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.2.0 |
Type | Boolean |
Default value | true |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect project BOM tool (Deprecated)
The detector to choose when multiple detector types are found and one needs to be chosen for project name and version. This property should be used with the detect.project.tool.
DEPRECATED: This property is changing.
Use --detect.project.detector
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Polaris property configuration (Deprecated)
Detect Polaris enabled (Deprecated)
Set to false to disable the Synopsys Polaris Tool.
DEPRECATED: This property is changing.
Use --detect.tools and POLARIS in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.4.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Polaris access token (Deprecated)
The access token for your polaris instance.
DEPRECATED: This property is being removed.
Detect will no longer invoke the Polaris CLI. It will cause failure in 7.0.0 and be removed in 8.0.0.
Details | Values |
---|---|
Added | 5.3.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Polaris arguments (Deprecated)
Additional arguments to pass to Polaris separated by space. The polaris.command takes precedence.
DEPRECATED: This property is being removed. Detect will no longer invoke the Polaris CLI. It will cause failure in 7.0.0 and be removed in 8.0.0.
Details | Values |
---|---|
Added | 5.3.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Polaris command (Deprecated)
A replacement command to pass to polaris separated by space. Include the analyze or setup command itself. If specified, polaris.arguments will be ignored and this will take precedence.
DEPRECATED: This property is being removed. Detect will no longer invoke the Polaris CLI. It will cause failure in 7.0.0 and be removed in 8.0.0.
Details | Values |
---|---|
Added | 6.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Polaris URL (Deprecated)
The URL of your Polaris instance.
DEPRECATED: This property is being removed. Detect will no longer invoke the Polaris CLI. It will cause failure in 7.0.0 and be removed in 8.0.0.
Details | Values |
---|---|
Added | 4.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project information property configuration
Detect API timeout (Deprecated)
Timeout for response from Black Duck regarding your project (i.e. risk reports and policy check). When changing this value, keep in mind the checking of policies might have to wait for a new scan to process which can take some time.
DEPRECATED: This property is now deprecated.
Use --detect.report.timeout in the future. NOTE the new property is in SECONDS not MILLISECONDS. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Long |
Default value | 300000 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project property configuration
Fail on Policy violation severities
A comma-separated list of policy violation severities that will fail Detect. If this is set to NONE, Detect will not fail due to policy violations. A value of ALL is equivalent to all of the other possible values except NONE.
Details | Values |
---|---|
Added | 3.0.0 |
Type | PolicyRuleSeverityType List |
Default value | NONE |
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | ALL, NONE, UNSPECIFIED, TRIVIAL, MINOR, MAJOR, CRITICAL, BLOCKER |
Strict | Yes |
Project description
If project description is specified, your project version will be created with this description.
Details | Values |
---|---|
Added | 4.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project name
An override for the name to use for the Black Duck project. If not supplied, Detect will attempt to use the tools to figure out a reasonable project name. If that fails, the final part of the directory path where the inspection is taking place will be used.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project tier
If a Black Duck project tier is specified, your project will be created with this tier.
Details | Values |
---|---|
Added | 3.1.0 |
Type | Optional Integer |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Version name
An override for the version to use for the Black Duck project. If not supplied, Detect will attempt to use the tools to figure out a reasonable version name. If that fails, the current date will be used.
Details | Values |
---|---|
Added | 4.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Version nickname
If a project version nickname is specified, your project version will be created with this nickname.
Details | Values |
---|---|
Added | 5.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Version notes
If project version notes are specified, your project version will be created with these notes.
Details | Values |
---|---|
Added | 3.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Version phase
An override for the Project Version phase.
Details | Values |
---|---|
Added | 3.0.0 |
Type | ProjectVersionPhaseType |
Default value | DEVELOPMENT |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | ARCHIVED, DEPRECATED, DEVELOPMENT, PLANNING, PRERELEASE, RELEASED |
Strict | Yes |
Update project version
If set to true, the project version is updated with the configured properties.
When set to true, the following properties will be updated on the Project. Project tier (detect.project.tier) and Project Level Adjustments (detect.project.level.adjustments). The following properties will also be updated on the version. Version notes (detect.project.version.notes), phase (detect.project.version.phase), distribution(detect.project.version.distribution).
Details | Values |
---|---|
Added | 4.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Aggregate BDIO file name (Advanced)
If set, this will aggregate all the BOMs to create a single BDIO file with the name provided.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
BDIO aggregate remediation mode (Advanced)
If an aggregate BDIO file is being generated and this property is set to DIRECT, the aggregate BDIO file will exclude code location nodes from the top layer of the dependency tree to preserve the correct identification of direct dependencies in the resulting Black Duck BOM. When this property is set to TRANSITIVE (the default), component source information is preserved by including code location nodes at the top of the dependency tree, but all components will appear as TRANSITIVE in the BOM.
Details | Values |
---|---|
Added | 6.1.0 |
Type | AggregateMode |
Default value | TRANSITIVE |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | DIRECT, TRANSITIVE |
Strict | Yes |
Clone latest project version (Advanced)
If set to true, detect will attempt to use the latest project version as the clone for this project. The project must exist and have at least one version.
Details | Values |
---|---|
Added | 5.6.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Clone Project Version Name (Advanced)
The name of the project version to clone this project version from. Respects the given clone categories in detect.project.clone.categories or as configured on the Black Duck server.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Scan name (Advanced)
An override for the name Detect will use for the scan file it creates. If supplied and multiple scans are found, Detect will append an index to each scan name.
Details | Values |
---|---|
Added | 4.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Custom fields - project (Advanced)
A list of custom fields with a label and comma-separated value starting from index 0. For example detect.custom.fields.project[0].label='example'
and detect.custom.fields.project[0].value='one,two'
. Note that these will not show up in the detect configuration log.
Details | Values |
---|---|
Details | Values |
Added | 5.6.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Custom fields - version (Advanced)
A list of custom fields with a label and comma-separated value starting from index 0. For example detect.custom.fields.version[0].label='example'
and detect.custom.fields.version[0].value='one,two'
. Note that these will not show up in the detect configuration log.
Details | Values |
---|---|
Added | 5.6.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Default project version name scheme (Advanced)
The scheme to use when the package managers can't determine a version. Refer to help for more information.
Details | Values |
---|---|
Added | 3.0.0 |
Type | DefaultVersionNameScheme |
Default value | TEXT |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | TIMESTAMP, TEXT |
Strict | Yes |
Default project version name text (Advanced)
The text to use as the default project version.
Details | Values |
---|---|
Added | 3.0.0 |
Type | String |
Default value | Default Detect Version |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Default project version name timestamp format (Advanced)
The timestamp format to use as the default project version.
Details | Values |
---|---|
Added | 3.0.0 |
Type | String |
Default value | yyyy-MM-dd'T'HH:mm:ss.SSS |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Parent project name (Advanced)
When a parent project and version name are specified, the created detect project will be added as a component to the specified parent project version. The specified parent project and parent project version must exist in Black Duck.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Parent project version name (Advanced)
When a parent project and version name are specified, the created detect project will be added as a component to the specified parent project version. The specified parent project and parent project version must exist in Black Duck.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Application ID (Advanced)
Sets the Application ID project setting.
Details | Values |
---|---|
Added | 5.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Clone project categories (Advanced)
An override for the project clone categories that are used when cloning a version. If the project already exists, make sure to use --detect.project.version.update to make sure these are set.
Details | Values |
---|---|
Added | 4.2.0 |
Type | ProjectCloneCategoriesType List |
Default value | COMPONENT_DATA,VULN_DATA |
Comma separated | Yes |
Case sensitive | Yes |
Acceptable values | COMPONENT_DATA, VULN_DATA, LICENSE_TERM_FULFILLMENT |
Strict | Yes |
Scan name prefix (Advanced)
A prefix to the name of the scans created by Detect. Useful for running against the same projects on multiple machines.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Scan name suffix (Advanced)
A suffix to the name of the scans created by Detect.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Unmap All Other Scans for Project (Advanced)
If set to true, unmaps all other scans mapped to the project version produced by the current run of Detect.
Details | Values |
---|---|
Added | 4.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Allow project level adjustments (Advanced)
An override for the project level matches.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | true |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project tags (Advanced)
The
Details | Values |
---|---|
Added | 5.6.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Project user groups (Advanced)
A comma-separated list of names of user groups to add to the project.
Details | Values |
---|---|
Added | 5.4.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Version distribution (Advanced)
An override for the Project Version distribution.
Details | Values |
---|---|
Added | 3.0.0 |
Type | LicenseFamilyLicenseFamilyRiskRulesReleaseDistributionType |
Default value | EXTERNAL |
Comma separated | No |
Case sensitive | Yes |
Acceptable values | EXTERNAL, SAAS, INTERNAL, OPENSOURCE |
Strict | Yes |
Proxy property configuration
Proxy host (Advanced)
This is the host name for the proxy server.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Bypass proxy hosts (Advanced)
A Comma separated list of regular expression host patterns that should not use the proxy. These patterns must adhere to Java regular expressions: https://docs.oracle.com/javase/8/docs/api/java/util/regex/Pattern.html
Details | Values |
---|---|
Added | 4.2.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
NTLM proxy domain (Advanced)
NTLM Proxy domain
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
NTLM proxy workstation (Advanced)
NTLM Proxy workstation
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Proxy password (Advanced)
Proxy password
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Proxy port (Advanced)
Proxy port
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Proxy username (Advanced)
Proxy username
Details | Values |
---|---|
Added | 4.1.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Report property configuration
Generate notices report
When set to true, a Black Duck notices report in text form is created in your source directory.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Notices report path
Proxy username
Details | Values |
---|---|
Added | 3.0.0 |
Type | Path |
Default value | . |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Generate Risk Report (PDF)
When set to true, a Black Duck risk report in PDF form will be created.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Risk report output path
The output directory for risk report in PDF. Default is the source directory.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Path |
Default value | . |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner property configuration
Binary scan target
If specified, this file and this file only will be uploaded for binary scan analysis. This property takes precedence over detect.binary.scan.file.name.patterns. The BINARY_SCAN tool does not provide project and version name defaults to Detect, so you need to set project and version names via properties when only the BINARY_SCAN tool is invoked.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Binary scan file name patterns
If specified, all files in the source directory whose names match these file name patterns will be zipped and uploaded for binary scan analysis. This property will not be used if detect.binary.scan.file.path is specified.
Details | Values |
---|---|
Added | 6.0.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner arguments
Additional arguments to use when running the Black Duck signature scanner.
For example, if you are running in bash on Linux and want to use the signature scanner's ability to read a list of directories to exclude from a file (using the signature scanner --exclude-from option). You tell the signature scanner read excluded directories from a file named excludes.txt in your home directory with: --detect.blackduck.signature.scanner.arguments='--exclude-from ${HOME}/excludes.txt'
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner copyright search
When set to true, user will be able to scan and discover copyright names in Black Duck.
Details | Values |
---|---|
Added | 6.4.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner dry run
If set to true, the signature scanner results are not uploaded to Black Duck, and the scanner results are written to disk.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Directory name exclusion patterns
A comma-separated list of directory name patterns for which Detect searches and adds to the signature scanner --exclude flag values.
These patterns are file system glob patterns ('?' is a wildcard for a single character, '*' is a wildcard for zero or more characters). Detect will recursively search within the scan targets for files/directories that match these patterns and will create the corresponding exclusion patterns (paths relative to the scan target directory) for the signature scanner (Black Duck scan CLI). Please note that the signature scanner will only exclude directories; matched filenames will be passed to the signature scanner but will have no effect. These patterns will be added to the patterns provided by detect.blackduck.signature.scanner.exclusion.patterns and passed as --exclude values. For example: suppose you are running in bash on Linux, and have a subdirectory named blackduck-common that you want to exclude. Any of the following would exclude it:
--detect.blackduck.signature.scanner.exclusion.name.patterns=blackduck-common
--detect.blackduck.signature.scanner.exclusion.name.patterns='blackduck-common'
--detect.blackduck.signature.scanner.exclusion.name.patterns='blackduck-*'
Use this property when you want Detect to convert the given patterns to actual paths. Use detect.blackduck.signature.scanner.exclusion.patterns to pass patterns directly to the signature scanner as-is.
Details | Values |
---|---|
Added | 4.2.0 |
Type | String list |
Default value | node_modules |
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Exclusion patterns
A comma-separated list of values to be used with the Signature Scanner --exclude flag.
Each pattern provided is passed to the signature scanner (Black Duck scan CLI) as a value for an --exclude option. The signature scanner requires that these exclusion patterns start and end with a forward slash (/) and may not contain double asterisks (**). These patterns will be added to the paths created from detect.blackduck.signature.scanner.exclusion.name.patterns and passed as --exclude values. Use this property to pass patterns directly to the signature scanner as-is. For example: suppose you are running in bash on Linux, and have a subdirectory named blackduck-common that you want to exclude from signature scanning. Any of the following would exclude it:
--detect.blackduck.signature.scanner.exclusion.patterns=/blackduck-common/
--detect.blackduck.signature.scanner.exclusion.patterns='/blackduck-common/'
--detect.blackduck.signature.scanner.exclusion.patterns='/blackduck-*/'
Use detect.blackduck.signature.scanner.exclusion.name.patterns when you want Detect to convert the given patterns to actual paths.
Details | Values |
---|---|
Added | 4.2.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Exclusion patterns search depth
Enables you to adjust the depth to which Detect will search when creating signature scanner exclusion patterns.
Details | Values |
---|---|
Added | 5.0.0 |
Type | Integer |
Default value | 4 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Individual file matching
Users may set this property to indicate what types of files they want to match.
Details | Values |
---|---|
Added | 6.2.0 |
Type | IndividualFileMatching |
Default value | NONE |
Comma separated | No |
Case sensitive | No |
Acceptable values | NONE, SOURCE, BINARY, ALL |
Strict | Yes |
Signature scanner license search
When set to true, user will be able to scan and discover license names in Black Duck.
Details | Values |
---|---|
Added | 6.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner local path
To use a local signature scanner, specify the path where the signature scanner was unzipped. This will likely look similar to scan.cli-x.y.z and includes the bin, icon, jre, and lib directories of the expanded scan.cli.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner target paths
These paths and only these paths will be scanned.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Path List |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Snippet matching
Use this value to enable the various snippet scanning modes. For a full explanation, please refer to the Running a component scan using the Signature Scanner command line section in your Black Duck server's online help.
Details | Values |
---|---|
Added | 5.5.0 |
Type | SnippetMatching |
Default value | NONE |
Comma separated | No |
Case sensitive | No |
Acceptable values | NONE, SNIPPET_MATCHING, SNIPPET_MATCHING_ONLY, FULL_SNIPPET_MATCHING, FULL_SNIPPET_MATCHING_ONLY |
Strict | Yes |
Upload source mode
If set to true, the signature scanner will, if supported by your Black Duck version, upload source code to Black Duck.
Details | Values |
---|---|
Added | 5.4.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner host URL (Advanced)
If this URL is set, an attempt will be made to use it to download the signature scanner. The server URL provided must respect the Black Duck's URLs for different operating systems.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner memory (Advanced)
The memory value for the scanner.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Integer |
Default value | 4096 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner local path (Offline) (Advanced)
To use a local signature scanner and force offline, specify the path where the signature scanner was unzipped. This will likely look similar to scan.cli-x.y.z and includes the bin, icon, jre, and lib directories of the expanded scan.cli.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Black Duck signature scanner disabled (Deprecated)
Set to true to disable the Black Duck Signature Scanner.
DEPRECATED: This property is changing.
Use --detect.tools
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Signature scanner parallel processors (Deprecated)
The number of scans to run in parallel defaults to 1, but if you specify -1, the number of processors on the machine will be used.
DEPRECATED: This property is changing.
Use --detect.parallel.processors
in the future. The --detect.parallel.processors
property will take precedence over this property. It will cause failure in 7.0.0 and be removed in 8.0.0.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Integer |
Default value | 1 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Snippet scanning (Deprecated)
If set to true, the signature scanner will, if supported by your Black Duck version, run in snippet scanning mode.
DEPRECATED: This property is now deprecated.
Use --detect.blackduck.signature.scanner.snippet.matching
in the future.
NOTE the new property is one of a particular set of values. You will need to consult the documentation for the Signature scanner in Black Duck for details. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner arguments (Deprecated)
Additional arguments to use when running the Hub signature scanner.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.arguments
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner disabled (Deprecated)
Set to true to disable the Hub Signature Scanner.
DEPRECATED: This property is changing.
Use --detect.tools
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner dry run (Deprecated)
If set to true, the signature scanner results will not be uploaded to the Hub and the scanner results will be written to disk.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.dry.run
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner exclusion name patterns (Deprecated)
A comma-separated list of directory name patterns Detect will search for and add to the Signature Scanner --exclude flag values.
Detect will recursively search within the scan targets for files/directories that match these file name patterns and will create the corresponding exclusion patterns for the signature scanner. These patterns will be added to the patterns provided by detect.blackduck.signature.scanner.exclusion.patterns.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.exclusion.name.patterns
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.0.0 |
Type | String list |
Default value | node_modules |
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner exclusion patterns (Deprecated)
A comma-separated list of values to be used with the Signature Scanner --exclude flag.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.exclusion.patterns
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | String list |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner host URL (Deprecated)
If this URL is set, an attempt will be made to use it to download the signature scanner. The server URL provided must respect the Hub's URLs for different operating systems.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.host.url
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional string |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner local path (Deprecated)
To use a local signature scanner, specify the path where the signature scanner was unzipped. This will likely look similar to scan.cli-x.y.z and includes the bin, icon, jre, and lib directories of the expanded scan.cli.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.local.path
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 4.2.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner memory (Deprecated)
The memory for the scanner to use.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.memory
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Integer |
Default value | 4096 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner offline local path (Deprecated)
To use a local signature scanner and force offline, specify the path where the signature scanner was unzipped. This will likely look similar to scan.cli-x.y.z and includes the bin, icon, jre, and lib directories of the expanded scan.cli.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.offline.local.path
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Optional path |
Default value |
|
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner parallel processors (Deprecated)
The number of scans to run in parallel, defaults to 1, but if you specify -1, the number of processors on the machine will be used.
DEPRECATED: This property is changing.
Use --detect.parallel.processors
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Integer |
Default value | 1 |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner paths (Deprecated)
These paths and only these paths will be scanned.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.paths
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Path List |
Default value |
|
Comma separated | Yes |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
Detect Hub signature scanner snippet mode (Deprecated)
If set to true, the signature scanner will, if supported by your Hub version, run in snippet scanning mode.
DEPRECATED: This property is changing.
Use --detect.blackduck.signature.scanner.snippet.mode
in the future. It will cause failure in 6.0.0 and be removed in 7.0.0.
Details | Values |
---|---|
Added | 3.0.0 |
Type | Boolean |
Default value | false |
Comma separated | No |
Case sensitive | No |
Acceptable values | Any |
Strict | No |
©2018 Synopsys, Inc. All Rights Reserved