End User Edition Frequently Asked Questions

What languages and frameworks does Puma Scan support?

Puma Scan supports scanning C#, view markup files (.aspx, .cshtml), and configuration files (.config, .json). Puma Scan supports .NET Core, .NET MVC, .NET Web Forms, and C# project library projects. Legacy Web Site projects are not supported.

What code editors does the Puma Scan End User edition support?

The End User Edition supports both Visual Studio and VS Code extensions. The Visual Studio extension (Windows only) supports scanning both .NET Full Framework and .NET Core projects. The VS Code extension (cross-platform for Windows, Mac OS, and Linux) supports scanning .NET Core and .NET Standard projects only. Legacy Web Site projects are not supported.

Is it a one time cost or an annual subscription?

Our pricing model is based on an annual subscription. We are happy to discuss and quote a perpetual option. Each year you receive a license file to activate the scanner. The annual subscription includes; software updates, rule updates and product support.

How many licenses do I receive?

You will receive one end-user license on the End User plan. You can install the scanner on up to three machines with the purchase of one End User license.

What's the difference between the End User plan and the Community plan?

While the Puma Scan Professional Community plan is complimentary, the Puma Scan Professional End User edition has fewer false positives, the ability to export findings into a report, more advanced features and product support.

How do you identify the three machines for the End User License?

A single license can be activated on up to three workstations. Workstations are activated using machine specific characteristics, including operating system and hardware identifiers. Licenses are installed in the user’s roaming profile directory. There won’t be issues with multiple licenses on a single machine belonging to different users.

What export formats does the End User Edition support?

The End User Edition offers several options for exporting the Puma Scan results. HTML for easily viewing and Puma Scan results. See our Sample HTML Report for an example. JSON formatting allows custom parsing with tools such as JQ. See our Sample JSON Schema for an example. CSV allows developers to easily sort and prioritize the scan results.

Server Edition Frequently Asked Questions

What languages and frameworks does Puma Scan support?

Puma Scan supports scanning C#, view markup files (.aspx, .cshtml), and configuration files (.config, .json). Puma Scan supports .NET Core, .NET MVC, .NET Web Forms, and C# project library projects. Legacy Web Site projects are not supported.

What operating systems does the Puma Scan Server Edition support?

The Server Edition is a Windows only executable (.exe) for scanning .NET Full Framework and .NET Core projects. Cross-platform support for Mac OS and Linux is not yet supported.

How do I purchase and install the Server Edition?

You can purchase the Server Edition by signing in and registering an account. This will take you through the appropriate steps to get the server license and download the installer.

How many End User Licenses does the Server Edition include?

Five End User Licenses are included with each Server Edition License. You have the option of purchasing additional End User licenses.

What export formats does the Server Edition support?

The Server Edition generates Puma Scan results in several formats. HTML for easily viewing Puma Scan results. JSON formatting allows custom parsing with tools such as JQ and integration with other vulnerability management systems. MSBuild formatting allows pipelines to processes the results and record vulnerabilities as build warnings or errors. Visual Studio Online (VSO) allows Puma Scan results to be added to the build warnings or errors when running as a VSTS build task. Other formats include VSTest (.trx) and Comma Separated Values (CSV).

Make sure to check out our Sample HTML Report. This shows the overall report format you'll see as you export your results.

How long does a typical scan take for the Server Edition?

It depends on the size and scope of the project. Smaller projects will see scan results in under a minute. Moderately sized projects may take a few minutes. Large monolith applications (e.g. > 50 projects in a single solution) have seen scan times between 10 and 20 minutes.

When does the scan start?

As soon as you commit your code, your build pipeline will kick off and execute the Puma Scan build task.

Does Puma Scan keep track of scan history?

Puma Scan does not support scan history at this time. This responsibility falls to the Continuos Integration server for archiving scan results (JSON, HTML, etc.), or to the DevOps teams for parsing and storing scan results in vulnerability management systems.

Can we have someone help customize, install and train our team on the Server Edition Product?

We offer separate packages for support, both for virtual training or in person. Please contact us for more information on this option.

Azure DevOps Edition Frequently Asked Questions

What languages and frameworks does Puma Scan support?

Puma Scan supports scanning C#, view markup files (.aspx, .cshtml), and configuration files (.config, .json). Puma Scan supports .NET Core, .NET MVC, .NET Web Forms, and C# project library projects. Legacy Web Site projects are not supported.

What build agents does the Puma Scan Azure DevOps Edition support?

The Azure DevOps Edition is an extension for Azure DevOps hosted build pipelines. The extension is a PowerShell based build task that run on Windows build agents. Cross-platform support for running Puma Scan on Mac OS and Linux build agents is not yet supported.

How many build pipelines can I scan with the Puma Scan Azure DevOps Edition?

The Azure DevOps Standard Edition allows activation and scanning in up to 20 build pipelines. The Azure DevOps Unlimited Edition allows unlimited build pipelines within a single Azure DevOps organization.

How do I purchase and install the Azure DevOps Edition?

You can purchase the Azure DevOps Edition by signing in and registering an account. This will take you through the appropriate steps to download an Azure DevOps license when configuring the build task.

How many End User Licenses does the Azure DevOps Edition include?

Five End User Licenses are included with each Azure DevOps Edition License. You have the option of purchasing additional End User licenses.

What export formats does the Azure DevOps Edition support?

The Azure DevOps Edition generates Puma Scan results in several formats. HTML for easily viewing Puma Scan results. JSON formatting allows custom parsing with tools such as JQ and integration with other vulnerability management systems. MSBuild formatting allows pipelines to processes the results and record vulnerabilities as build warnings or errors. Visual Studio Online (VSO) allows Puma Scan results to be added to the build warnings or errors when running in Azure DevOps. Other formats include VSTest (.trx) and Comma Separated Values (CSV).

Make sure to check out our Sample HTML Report. This shows the overall report format you'll see as you export your results.

How long does a typical scan take for the Server Edition?

It depends on the size and scope of the project. Smaller projects will see scan results in under a minute. Moderately sized projects may take a few minutes. Large monolith applications (e.g. > 50 projects in a single solution) have seen scan times between 10 and 20 minutes.

When does the scan start?

As soon as you commit your code, your build pipeline will kick off and execute the Puma Scan build task.

Does Puma Scan keep track of scan history?

Puma Scan does not support scan history at this time. This responsibility falls to the Continuos Integration server for archiving scan results (JSON, HTML, etc.), or to the DevOps teams for parsing and storing scan results in vulnerability management systems.

Can we have someone help customize, install and train our team on the Server Edition Product?

We offer separate packages for support, both for virtual training or in person. Please contact us for more information on this option.

Enterprise Plan Frequently Asked Questions

Do you offer Enterprise level discounts?

The Puma Scan team would be happy to provide a custom quote for and Enterprise License request.

How many End Users can I have with my Enterprise License?

As many as your team or project requires.

How many Server Licenses come with the Enterprise plan?

As many as your team and company need, as defined in your custom quote.

How does payment work?

For Enterprise agreements, we can consider quarterly, bi-annual or annual payment options. Our team will work with you on a custom quote and payment agreement.

Do you offer reseller discounts?

Yes! Contact us to inquire about reseller discounts.

How do I install an Enterprise License?

The benefit of an Enterprise License is the custom training and installation guidance from our team of professionals. We offer online training or a face to face training in your work environment.