JSP

ShiftLeft products support applications written in JSP.

ShiftLeft Inspect for JSP

After installing the ShiftLeft Command Line Interface (CLI) and authenticating, use the following command to analyze your JSP application with ShiftLeft Inspect

sl analyze --app <name> --java [<path>]

where

--app <name> analyze the application of <name>.

--java identity of the application's language.

<path> location of the .jsp file to be analyzed.

Next Steps

Analyze Applications

Identify Branch Names

Fail a Build Based on Analysis Results

ShiftLeft Ocular for JSP

After installing the ShiftLeft Command Line Interface (CLI), authenticating and starting ShiftLeft Ocular, you create the Code Property Graph (CPG) for your JSP application using

ocular> createCpg(<inputPaths>)

where <inputPaths> is the path of the target application; multiple applications are separated by a comma. For JSP, the path is the archive (JAR or WAR file). For example, createCpg("JavaVulnerableLab.war").

For more information, including additional options, refer to the article Creating the CPG

Next Steps

Generate the Security Profile

Querying the CPG and Security Profile

Using ShiftLeft Ocular with JSP

ShiftLeft Protect for JSP

After installing the ShiftLeft Command Line Interface (CLI) and authenticating, use the following command to monitor and protect your JSP application with ShiftLeft Protect

sl run --app <name> --java

where

--app <name>. Specifies your application's unique name.

--java identity of the application's language.

Next Steps

Secure Your Applications Using ShiftLeft Protect

Run ShiftLeft Protect

The ShiftLeft JSON File