Advanced Options

 

Scan Types

With JeSS you can customize the set of security bugs that will be scanned for.  As default JeSS will only scan for Anonymous Inner Classes, Unhandled Exceptions, and Missing Modifiers (details of these security bugs can be found in Concepts section).  JeSS can also determine the methods, fields and classes of a project that are declared public.  This a similar scan can also be used to find all protected methods, and to find all classes, methods and fields that are not declared final.  These types of scans should be done individually as they typically produce a large number of results.   The utility of these types of scans is described in detail in the Concepts section.

 

Selecting Scan Types

It is a simple process to customize the scan that JeSS performs.  This can be done on the JeSS Preference page.  To access the JeSS Preference you can either select the ÒShow JeSS PreferencesÓ from the JeSS menu or access them through ÒWindow-->PreferencesÓ and then select ÒJeSS PreferencesÓ from the menu on the left hand side of the dialog.

 

Select ÒShow JeSS PreferencesÓ

 

  This dialog shows a simple list of available scanners with a Boolean checkbox next to them.  To enable a particular type of scan simply select or deselect the checkbox that corresponds to the desired scanner.  The last two elements on this preference page are to be used to extend the functionality of JeSS.

 

JeSS Preferences: use the checkboxes to customize the security scan

 

Using Your Own Scanners

Greater detail on this subject can be found in the Extending JeSS section of this users guide.