Create/Edit Scan Profile Dialog
Code Insight 2021 R3
Both the Create Scan Profile dialog and the Edit Scan Profile dialog contain the fields described in this table to define or update a scan profile. Code Insight System Administrators access either dialog from the Scan Profiles tab on the Administration page.
In addition to letting you create custom scan profiles, Code Insight ships with the following pre-defined scan profiles, which you can modify, assign to projects, or use as templates for creating your own profiles:
| • | Basic Scan Profile (without CL)—Defines a scan that uses Automated Analysis to detect evidence of open-source software (OSS) and third-party code in your codebase and generate an inventory of the findings. This scan does not perform exact-file or source-code matching and therefore does not use the Compliance Library (CL). |
| • | Standard Scan Profile—Defines a scan that includes the basic scan features but also performs exact-file matching (that is, identifies codebase files that have an exact MD5 match in the CL). This scan requires the CL. This is the scan profile used as a template when you create a new profile. It cannot be modified. |
| • | Comprehensive Scan Profile—Defines a scan that includes the basic scan features but also performs exact-file and source-code matching. (Source-code matches are strings in the codebase files that have an exact match to content in files in the CL). This scan requires the CL. |
For your reference, the table below indicates which scan settings are enabled for each pre-defined profile.
|
Field |
|
Description |
Basic |
Standard |
Comprehensive |
|||||||||||
|
Name |
Enter or edit the profile name. |
X |
X |
X |
||||||||||||
|
Perform Package/License Discovery in Archives |
Select this option to have the Scan Server recursively perform package discovery and license detection within all archive files encountered in the project codebase. By default, this option is selected. |
X |
X |
X |
||||||||||||
|
Dependency Support |
Determine the level of dependency scanning to be performed by the Scan Server. The available options include:
For a description of Code Insight dependency support for supported ecosystems, see the “Automated Analysis” chapter in the Code Insight User Guide. |
X |
X |
X |
||||||||||||
|
Automatically Add Related Files to Inventory |
Select this option to have the system associate additional files to existing inventory items based on the data available in automatic detection rules. |
X |
X |
X |
||||||||||||
|
Rescan Options |
By default, when a user initiates a regular rescan (that is, not a forced full rescan), only those files that have changed since the last scan are scanned. However, certain Code Insight events that have occurred since the previous scan can result in a rescan of all files (a full rescan). For a description of these events, see “Default Scan Behavior” in the Code Insight User Guide. These options are used to override this default rescan behavior so that, even if any of the events that would normally call for a full rescan have occurred, all rescans will skip unchanged files and scan changed files only. |
|||||||||||||||
|
Do not rescan files that have not changed since previous scan |
Select this option so that rescans always skip unchanged files and scan only those files that have changed since the last scan (even if events have occurred since the last scan that call for a full rescan). |
|
|
|
||||||||||||
|
Apply this option to: |
If the Do not rescan files... option is selected, further clarify which unchanged files to skip during the rescan:
|
|
|
|
||||||||||||
|
Exact Matches |
Select this option to enable the detection and recording of scanned files that exactly match entire-file data in the Compliance Library (CL). |
|
X |
X |
||||||||||||
|
Source Code Matches |
Select this option to enable the detection and recording of any source-code snippets in the scanned files that match data in the Compliance Library (CL). If you enable this source-code matching, specify any of the following additional parameters for the matching process. |
|
|
X |
||||||||||||
|
Include System- Identified Files |
Select this option if you want the Scan Server to perform source-code matching for files that have already been associated with one or more inventory items during automated analysis. |
|
|
X |
||||||||||||
|
Include Files with Exact Matches |
Select this option if you want the Scan Server to perform source-code matching for files that have already been identified as having exact-file matches in the CL. |
|
|
X |
||||||||||||
|
Minimum Source Code Matches |
Enter the minimum number of source-code matches that the scan needs to detect in a given codebase file before reporting the file as having such matches. (A source-code match is a snippet of code in a codebase file that matches an open-source code snippet found in the CL data.) Enter a new minimum value from 1 to 32767. (The default is 3.) For example, if this value is increased to 10, ten code snippets in a given codebase file must match data in the CL before the scan reports the file as having source-code matches. In general, the higher this value, the fewer source-code matches an analyzer has to review. |
|
|
X |
||||||||||||
|
Search Terms |
Provide a list of search terms to be used in the scan. Use the + button to add a term and the - button to remove a term. |
X |
X |
X |
||||||||||||
|
Scan Exclusions |
Provide a list of file extensions to be excluded from the scan. Use the + button to add an exclusion term and the - button to remove an exclusion. See “Creating Exclusion Patterns for Scan Profiles” in the Code Insight Installation & Configuration Guide for further instructions. |
X |
X |
X |
||||||||||||
See Also