Frequently asked questions for Server plan

How do I purchase and install the Server or Azure DevOps Editions?

Great news! You're interested in secure coding from your on-premise or cloud build servers. Purchase, installation and configuration steps are super simple and you'll be up and running in no time.

1. Register an Account in our Customer Portal.
2. Follow the prompts directing you to the license purchase options.
3. Select the product you are interested in purchasing.
4. Select payment by invoice or credit card.

Follow the steps for installation, user guide and check out the library of documented rules and vulnerabilities.

How many End User Licenses does the Server Edition include?

Five End User Licenses that are used as an extension in Visual Studio are included with each Server and Azure DevOps Editions.

A unique feature with our products is that everything can be purchased on an individual basis and are not required to be part of any package.

What export formats does the Server Edition support?

The Server Edition generates Puma Scan results in several formats. HTML for easily viewing Puma Scan results. JSON formatting allows custom parsing with tools such as JQ and integration with other vulnerability management systems. MSBuild formatting allows pipelines to processes the results and record vulnerabilities as build warnings or errors. Visual Studio Online (VSO) allows Puma Scan results to be added to the build warnings or errors when running as a VSTS build task. Other formats include VSTest (.trx) and Comma Separated Values (CSV).

Make sure to check out our Sample HTML Report. This shows the overall report format you'll see as you export your results.

How long does a typical scan take for the Server Edition?

It depends on the size and scope of the project. Smaller projects will see scan results in under a minute. Moderately sized projects may take a few minutes. Large monolith applications (e.g. > 50 projects in a single solution) have seen scan times between 10 and 20 minutes.

When does the scan start?

As soon as you commit your code, your build pipeline will kick off. Puma Scan

Does the tool keep track of project history?

Every artifact (HTML reports) will automatically archive, meaning you can see the history and especially trending.

What languages and frameworks does Puma Scan support?

Puma Scan supports C# in both the .NET Framework and .NET Core for .NET Web Forms, .NET MVC, and C# projects. Legacy Web Site projects are not supported. Cross-platform code editors (e.g. VSCode) are not yet supported.