8
1.0.36
Zurich, Yokohama, Xanadu
Integration
Checkmarx One Vulnerability Integration uses data imported from Checkmarx One Service to help determine the impact and priority of vulnerabilities in the code as well as its dependencies.
Version 1.0.15 and above will have DevOps Integration support.
This integration imports SAST, SCA, IaC, Container Security, API Security, Secret Detection and ScoreCard results from the Checkmarx One platform.
Configurable Source AVIT ID Key
- Added option to configure how the Source AVIT ID Key is generated for SAST findings.
Migration Support
- Added support to update existing SAST findings’ Source AVIT ID to the new key format.
Aggregation of Findings
- SAST findings from the same scan with the same Source AVIT ID Key are grouped.
- Up to 30 links are added to Source Vulnerability Summary.
- Dependency Type displays the count of aggregated findings.
Migration Behavior
- Migration is incremental and based on the latest scan fetched, determined by the Start Date set on the Integration Run.
- Only findings from scans retrieved after the configured Start Date are considered for migration during each run.
Bulk / One-Time Migration Recommendation
- If a full one-time migration is required, it is recommended to perform it in batches.
- Please contact your respective CSM for assistance in creating batches of projects to support this process efficiently.
Note:
Configure Source AVIT ID Key is defaulted to similarityIdHash preserving existing behavior unless explicitly changed by the user.
-
-
Install the pre-requisite plugins in the following order (mentioned is minimum supported version for X,Y,Z release)
- security integration framework (13.10.6)
- security support common (13.18.1)
- Security Support Orchestration (12.13.2)
- Vulnerability Response Dependencies
- Vulnerability Response (26.0.13)
-
Checkmarx One License