We have recently starting using Appscan source analyzer 8.8 version. We were trying to use a custom configuration by selecting individual rules. But still the scan was running against all rules.
eg: when we create a configuration from the normal scan and select say only the harcoded password property and scan against this configuration. we were expecting that we should only be seeing findings related to hardcoded password. But we are seeing many more findings.
Can anyone help ? Are we doing anything wrong with the configuration ?