How to test from the web UI

How to run a test on your project from the Polaris user interface.

From the Polaris user interface, you can run tests against:

  • SAST & SCA projects, by testing:
    • Files you upload manually.
      Note: Before uploading, see the limitations for uploads here: Upload Limitations.
    • A branch of a repository.
      Note: To scan branches in a repository, you need to set up an SCM integration first. For more information, see Integrate a SCM Repository to a Project. Before or after you set up an SCM integration, you can add branches to a project that aren't connected to a repository.
  • DAST projects.

Only one test can run on a project at a time. Earlier tests of a project must be completed before later tests start.

Test a SAST & SCA project

Follow these steps to run SAST and/or SCA tests from the Polaris user interface:

  1. There's more than one way to start this procedure:
    • Go to Portfolio, select an application, click the icon at the end of the project's row, and select New Test.
    • Go to Tests and select New Test.
  2. Select the branch to scan with the Application, Project, and Branch dropdown menus.
    Note: Depending on how you start a test, the Application, Project, and Branch values may already be filled in.
  3. Use the SAST and SCA checkboxes to select test to run.
    Note: These options depend on what your Application Admin has made available for the project.
  4. To manually upload code and test it:
    1. Select Code Upload.


    2. Drag and drop the files you want to test into the Source code zone, or select Browse Files to find files to test on your file system.
      Note: For Code Uploads, source code filenames can include letters, digits, and the characters “.”, “-” and “_”. No other characters or spaces are allowed.
  5. To test a branch in a repository:
    1. Select Repository.
      Note: The Repository option is only available when you select a branch that is connected to a repository.


    2. Select Test your connection.
  6. Select Begin Test.
    Note: The Begin Test button is locked until either, Polaris successfully connects to the repository or the file upload completes.
Monitor test progress on the Tests page (accessible from the left-hand navbar). Newer tests appear near the top of the page. Filter tests by date, type, status, and the application, project, or branch/profile tested.
Note: When you scan a project for the first time, you may receive email communications from the Black Duck team that require a response in order for testing to finish.

Test a DAST project

Follow these steps to run a DAST test from the Polaris user interface:

  1. There's more than one way to start this procedure:
    • Go to Portfolio, select an application, click the icon at the end of the project's row, and select New Test.
    • Go to Tests and select New Test.
  2. Select the DAST profile to scan with the Application and Project dropdown menus.


    Note: Depending on how you start a test, the Application, Project, and Profile values may already be filled in.
  3. (Optional) Select Test Connection.
    This test can take a few minutes to complete and ensures:
    • The Entry Point URL is valid.
    • Polaris can connect to the web application.
    • Polaris can authenticate with the web application.
  4. Select Begin Test.
Monitor test progress on the Tests page (accessible from the left-hand navbar). Newer tests appear near the top of the page. Filter tests by date, type, status, and the application, project, or branch/profile tested.