Note:
This app version is intended for Unified Security Exposure Management (USEM), a significant architectural upgrade to the Vulnerability Response applications.
If you are currently using Vulnerability Response and upgrading to USEM for the first time, you must use the Migration assistant for Unified Security Exposure Management to ensure a safe and successful upgrade. For full details, please refer to the KB2556844 and documentation before proceeding.
If you do not intend to upgrade to USEM, please select a version below 30.x when installing or upgrading.
Integrate your Black Duck account with ServiceNow Vulnerability Response to prioritize and remediate application vulnerabilities.
Black Duck comes with three Integration steps:
Project List Integration - This integration step pulls and ingests data into the Black Duck projects table.
Application List Integration - This integration step ingests applications into discovered applications table for all the versions available with Black Duck Integration in projects table.
Application Vulnerable Item Integration : This integration step ingests vulnerable items into ServiceNow application based on the vulnerabilities detected by scanners for every discovered application in the system.
New
- If Vulnerability Response Integration with Black Duck for SecOps is installed, a tile to review the integration status run is displayed in the Administration Console.
Removed
- Admin override check has been removed from the ACLs.
-
The following app for Vulnerability Response must be installed and activated:
- Vulnerability Response
For information on Vulnerability Response application compatibility see, "Vulnerability Response and Configuration Compliance Compatibility Matrix" under Supporting Links and Docs.
Permissions and roles- Roles required:
- System Admin (admin)
- Application Security Manager (User assigned to App-Sec Manager group)