| Table of Contents |
|---|
Supported File Extensions
For a complete list of supported file extensions (binary files, source files, and archive files) that the Unified Agent supports, refer here.
Selecting a Plugin for Integration
| Info |
|---|
WhiteSource recommends using the the Unified Agent. |
Language | Plugin |
|---|---|
Java | |
.Net | |
Scala | |
Clojure | |
C# | |
Ruby | |
Python | |
NPM | |
NuGet | |
Bower | |
C/C++ | |
Obj-C | |
JavaScript | |
PHP | |
Go | |
RPM/YUM | |
Debian | |
Swift | |
Alpine Linux | |
Groovy | |
ActionScript | |
Arch Linux |
...
Scanning Archives Files
If you have Java/Ruby/Python archive files and you are willing to open them and extract descriptive information, then you can use this feature by providing values for the following parameters:
archiveExtractionDepth
archiveIncludes
archiveExcludes
The drill-down hierarchy is limited to a maximum of 10 and can be modified in the configuration file.
By default, the drill-down hierarchy level is zero - no drill down.
Supported archive types are as follows:
.aar
.car
.ear
.egg
.gem
.hpi
.jar
.nupkg
.rar
.rpm
.sca
.sda
.tar
.tar.bz2
.tar.gz
.tar.xz
.tgz
.war
.whl
.xz
.zip
| Info |
|---|
|
Providing a Project Name Only in a Unified Agent Scan
Overview and Default Behavior
If a scanned project uses a configuration file that contains only a defined projectName (where projectToken, productName and productToken are left empty), then the Unified Agent adds the results to the first project it finds in the organization that contains the same project name.
If a multi-module project is scanned with the same configuration as described above, and a project with one of the module names already exists, then the Unified Agent adds the module data to this existing project.
Example: Only 'projectName' is defined and 'projectToken’, ‘productName’ and ‘productToken’ are left empty
| Code Block |
|---|
projectName=NewProject projectToken= productName= productToken= |
Changing the Default Behavior
In order to avoid overriding an existing project with the same name, from the Advanced Settings section of the Integrate page, select the checkbox Add project to default product when only project name is provided.
When this checkbox is selected, the following rules apply to all future scans:
...
| Info |
|---|
Examplejava -jar /path/to/jar/wss-unified-agent-<x.x.x.>.jar -c "https://raw.githubusercontent.com/whitesource/unified-agent-distribution/master/standAlone/wss-unified-agent.config" -proxy http://hm:hm@192.168.1.233:808/ |
NOTE: The following protocols are supported: 'file://', 'ftp://', 'http://', 'https://'
...
Download JarSigner (there are multiple sources from where the utility can be downloaded).
From the command line, enter the following command to run JarSigner and view the list of security certificates in the .jar file:
|
After running, ensure that the WhiteSource information appears in the list of security certificates.
...
If there is an issue with the Java heap size, depending on the machine resources, try to install a 64-bit Java Runtime and use the '–d64' along with the '–Xmx' and '–Xms' switches to increase the Java heap size.”
Limitations
The minimum file size for scanning is 512 bytes. The maximum file size for scanning is 2 GB. All other files will be skipped and not scanned by the Unified Agent.
The Unified Agent supports UTF-8 locales. If other locales are in use, the Unified Agent generates an error when confronting special characters.
Requests with more than one million dependencies will fail.