docuflow passes all P1/P2/P3 SAP CVA SLIN_SEC checks. 

All requirements are handed via inline docuflow code with the exception of access (READ) to standard some standard SAP table (considered level P3).

To pass this requirement, an additional transport is available from VersaFile to implement BADI SLIN_BADI_DBTAB_ACCESS.

Overall CMS API Notes

SAP Code Vulnerability Analyzer (CVA)

log4j Update

docuflow Guides

Welcome

What's New

docuflow for Box

docuflow for Microsoft

Untitled

docuflow for FileNet

Repository Specific Guides

Purpose of Guide

Customer Resources Required

Configuration Overview

Viewing and Attachment List Options

DocManager

Custom API Usage

Choice Lists

Workflow Connect

AuditLink

DocMigrator

Accounts Payable

Publisher

System Messages

Utilities: CMS Load (Beta)

Utilities: Link Maintenance

Utilities: Metadata Push (MDPro)

Utilities: Cleaning Gateway Errors

Utilities: Archiving Gateway Data

Utilities: Attachment List Dashboard

Working with the API Gateway and SCRUD Test Harness

Solution Guide

Class/Method Plug-In’s

docuflow BADI’s

SCRUD API’s

Ping and Load API's

docuflow SCRUD Web Services

docuflow BAPI Web Services

Useful / Common docuflow Methods

Developers Guide

Release Schedule

Source Code Review

Vulnerability Assessment

Security Testing

Managing Security Issues

VersaFile Release Management

Middleware

Change Log

Agnostic Guides