Skip to main content

Cycode

Application Security

The Cycode Connector integrates with the Cycode Application Security Posture Management (ASPM) platform to synchronize security findings and the organizational assets they relate to. It fetches violations from the Cycode V4 violations API (SAST, SCA, secrets, Infrastructure as Code, and CI/CD security domains), the policies that define those violation types, and the repositories and projects the violations are found in.

A single pull of the violations API is cached locally and then filtered client-side into three finding models (SAST findings, SCA findings, and generic violations). Likewise, a single pull of the policies API is filtered client-side into three definition models.

Category: Application Security


Data retrieved from Cycode

Connector ObjectRequiredMaps to Data Model
RepositoryYesCode Repository
ProjectYesCode Project
SAST FindingYesStatic Code Finding
SCA FindingYesOpen Source Finding
ViolationYesViolation
SAST Finding DefinitionYesStatic Code Finding Definition
SCA Finding DefinitionYesOpen Source Finding Definition
Violation DefinitionYesViolation Definition

Model relationships

note

For detailed steps on how to view the data retrieved from Cycode in the Brinqa Platform, see How to view your data.