LogoLogo
IntegrationsInstallationAdministrationContact Support
XMPro WorkFlow
XMPro WorkFlow
  • What is XMPro WorkFlow?
  • Getting Started
    • Browser Requirements
    • Features
  • Resources
    • What's New in 7.0
    • Security
    • Connectors
    • FAQs
      • Integration
      • Configuration
      • Troubleshooting
      • WorkFlow Monitor
  • Concepts
    • WorkFlow
    • WorkFlow Designer
    • WorkFlow Monitor
    • Administrator Model
    • Process Model
    • Activities
    • Activity Fields
    • Visio Basics
    • Activity Configuration Wizard
    • Integration Wizard
    • Report Designer Wizard
    • Dashboard Designer Wizard
  • How-To Guides
    • Business Group Management
      • Business Group Management in WorkFlow Designer
      • Business Group Management in WorkFlow
    • Role Management
      • Role Management in WorkFlow Designer
      • Role Management in WorkFlow
    • User Management
      • User Management in WorkFlow Designer
      • User Management in WorkFlow
    • Site Settings Management
      • Using Site Settings in WorkFlow Designer
      • Using Site Settings in WorkFlow
    • Meta Data Management
      • Meta Data Management in WorkFlow Designer
      • Meta Data Management in WorkFlow
    • Working with Process Groups
    • Working with Processes
    • Working with Activities
    • Working with Fields
    • Importing and Exporting Visio Diagram
    • Using Fast Fields
    • Using the Designer Wizards
      • Activity Configuration Wizard
      • Object Configuration Wizard
      • Integration Wizard
    • Configuring Landing Pages
    • Using the Report Designer
    • Using the Dashboard Designer
    • Using the Site Styles in WorkFlow
    • Transfer Manager
    • WorkFlow Connectors Administration
    • Creating WorkFlow Connector Plugins
  • Administration
    • Applying License
    • Manage Options
  • Installation
    • 1. Preparation
    • 2. Install WorkFlow
    • Upgrading Existing Installations
  • Release Notes
    • v7.0
Powered by GitBook
On this page
  • Security Technologies and Practices
  • Static Application Security Testing (SAST)
  • Dynamic Application Security Testing (DAST)
  • Software Composition Analysis (SCA)
  • Results
  • Support and Recommendations

Was this helpful?

Export as PDF
  1. Resources

Security

XMPro places a high priority on security, performing app security checks every 3 months using Veracode. Veracode's comprehensive analysis helps identify, prevent, and fix vulnerabilities through multiple testing methods: Static Analysis (white-box testing), Dynamic Analysis (black-box testing), and Software Composition Analysis.

Security Technologies and Practices

Our suite of products leverages robust technologies and practices to maintain a high security standard:

  • WorkFlow, WorkFlow Designer and WorkFlow Monitor are built on .NET 4.8.0.

In the event a vulnerability is identified in any of these technologies, Microsoft promptly releases an update. We integrate these updates into our products and regularly release new versions that include essential security fixes.

Static Application Security Testing (SAST)

Static Application Security Testing (SAST) is a form of white-box testing used to scan an application’s source, binary, or byte code.

Dynamic Application Security Testing (DAST)

Dynamic Application Security Testing (DAST) analyzes a web application through the front end to find vulnerabilities through simulated attacks. This is also called Penetration testing.

Software Composition Analysis (SCA)

Software Composition Analysis scans all the components used in an application for security risks and vulnerabilities.

Results

Product
SAST Score
DAST Score
Date

Designer

100

Not applicable

08 August 2024

WorkFlow

100

91

08 August 2024

Monitor

98

Not applicable

08 August 2024

Support and Recommendations

PreviousWhat's New in 7.0NextConnectors

Last updated 1 month ago

Was this helpful?

.NET versions are supported by Microsoft for 3 years after release, as detailed in their . To ensure you have the most secure XMPro offerings, we recommend upgrading as soon as a new version becomes available to take advantage of the latest security updates and features.

support policy