Scanning Maven Projects

A quick guide to scanning your Maven projects using Reshift.

This article explains how to scan Maven projects using Reshift. If you didn't set up any projects on Reshift before, please read Scan Your First Project.

First, start scanning a new project, there are two ways to do that: 1- By clicking on the "Add Project" card inside the Projects Home page.

2- By clicking on the "+" button towards the top right hand corner of every screen.

Next, choose your Maven project from the list that will pop from the right hand side.

Pro Tip: the repositories with the blue shield next to them are already set up.

Next, you will be prompted to choose the projects setting, make sure to choose "Maven" from the "Build Approach"

Click on "Add New Project Token". The "Project Token" is a way to identify reporting machines (i.e. the machine that generates the report).

Next, choose a Project Token that can easily recognize the reporting machine

Next, copy the Maven command line using the "Copy Code" button and paste it in your terminal (or build system).

The project will build, then it will download and run the reshift plugin.

The results will automatically be sent to the server for analysis. Reshift will automatically refresh the page and you will be redirected to the Report Dashboard.

If you have any more questions, please email us at info@reshiftsecurity.com!