The End User extension is a Visual Studio extension and scans C# in both the .NET Framework and .NET Core. Cross-platform code editors (e.g. VSCode) are not yet supported.
Our pricing model is based on an annual subscription. We do not offer perpetual licenses at this time. Each year you receive a license file to activate the scanner (again, valid for one year from activation). The annual subscription includes; software updates, rule updates, and product support.
You will receive one end-user license on the End User plan. You can install the scanner on up to three machines with the purchase of one End User license.
While the Community plan is complimentary, the professional End User edition has fewer false positives, ability to export your findings into a report, more advanced features, and product support.
A single license is allowed to be activated on up to 3 workstations. Workstations are activated using machine specific characteristics such as operating system and hardware identifiers. Licenses are installed in the user’s roaming profile directory, so there will not be any issues with having multiple licenses on a single machine belong to different users. Let me know if you have any additional questions on this.
The End User Edition offers several options for exporting the Puma Scan results. HTML for easily viewing Puma Scan results in an official report format.JSON formatting allows custom parsing with tools such as JQ. MSBuild formatting allows pipelines to processes the results and record vulnerabilities as build warnings or errors. Visual Studio Online (VSO) allows Puma Scan results to be added to the build warnings or errors as the scan runs as a TFS task.
The Server edition is a Windows executable (.exe) for scanning C# code targeting the .NET Framework. Scanning .NET Core projects and cross-platform (Mac OS and Linux) is not yet supported.
You can purchase the Server Edition by signing in and registering an account. This will take you through the appropriate steps to get the server license, plus 5 End User licenses downloaded and up and running.
Five End User Licenses are included with each Server Edition License. You have the option of purchasing additional Build Server Agents.
The Server Edition offers several options for exporting the Puma Scan results. HTML for easily viewing Puma Scan results in an official report format.JSON formatting allows custom parsing with tools such as JQ. MSBuild formatting allows pipelines to processes the results and record vulnerabilities as build warnings or errors. Visual Studio Online (VSO) allows Puma Scan results to be added to the build warnings or errors as the scan runs as a TFS task.
It depends on the size and scope of the project. Some projects can scan and have results within an hour. We recommend adding it as part of your automated scan process during the build process. This compliments efforts of your DevSecOps teams.
As soon as you commit your code, your build pipeline will kick off.
Every artifact (HTML reports) will automatically archive, meaning you can see the history and especially trending.
We offer separate packages for support, both for virtual training or in person. Please contact us for more information on this option.
The Puma Scan team would be happy to provide a custom quote for and Enterprise License request.
As many as your team or project requires.
As many as your team and company need, as defined in your custom quote.
For Enterprise agreements, we can consider quarterly, bi-annual or annual payment options. Our team will work with you on a custom quote and payment agreement.
Contact us to inquire about reseller discounts.
The benefit of an Enterprise License is the custom training and installation guidance from our team of professionals. We offer online training or a face to face training in your work environment.