Our security team wants to check our webMethods code for vulnerabilities and general standards followed/not followed for security using CheckMarx. At very high level I have understood that we need our code in some repository like GitLab to begin with. But the challenge is that we need to do it using CheckMarx which doesn’t enlist anything like webMethods flow language explicitly.
As, eventually, we save everything as XML in disc can we achieve the vulnerability test?
If anybody has used it ever, if yes, can you please help us on process and best practices around it.
Will add more after working sessions with concerned teams.