Fortify Static Code Analyzer – Improving Performance – Sample Scans

These sample scans were performed using Fortify Static Code Analyzer version 19.2.0 on a dedicated Linux virtual machine with 4 CPUs and 32 GB of RAM. These scans were run using Micro Focus Fortify Software Security Content 2019 Update 3. The following table shows the scan times you can expect for several common open-source projects.

Project Name Language Scan Time Total Issues LOC
Apache-HTTPd C/C++ 07:26 1,903 32,562
WebGoat 7.0 Java 01:07 417 3,595
WordPress Java 02:06 618 10,055
CakePHP PHP 02:52 2,326 54,546
phpBB 3 PHP 03:03 1,253 39,581
SmartStoreNET .NET 54:14 5,550 208,747
Office365-cli TypeScript 27:56 186 77,787
Hackademic JavaScript 10:11 457 54,259
numpy-1.13.3 Python 3 1:23:43 250 92,630
Swift.nV Swift 00:49 62 886
READ  Installing Fortify Static Code Analyzer and Applications Silently (Unattended)

Leave a Comment