When i follow shared procedure to scan a jar file i get blank reports please assist point to the Jar file command
Scan Java project
For Java and JVM language-based projects, it is important to compile the projects before invoking sast-scan in the dev and CI workflow.

docker run --rm -e "WORKSPACE=${PWD}" -v ~/.m2:/.m2 -v <source path>:/app shiftleft/scan scan --src /app --type java

It returns an empty report, should the argument <source path>:/app point to the file jar or point to the folder where the Jar file is
Because it does not seem to work