Import from many SAST, SCA, DAST, infrastructure and secrets scanners |
|
GitLab CI integration of scanners with predefined templates GitHub integration of scanners with predefined actions |
|
Data enrichment from Exploit Prediction Scoring System (EPSS) |
|
Always up-to-date SPDX licenses |
|
License groups generated from ScanCode LicenseDB data |
|
Direct link to source code |
|
Export vulnerabilities to issue trackers (Jira, GitLab, GitHub) |
|
Import/export vulnerabilities from/to VEX documents (CSAF, OpenVEX) |
|
Export of data to Microsoft Excel and CSV |
|
Export metrics to CodeCharta |
|
Notifications to Microsoft Teams, Slack and email |
|
Links to additional information about vulnerabilities and components |
|
REST API |
|