Navigation Panel
All the main screens within Checkmarx One (listed below) are accessible via the left side navigation panel.
The following is a brief description of the selection options in the navigation panel:
Screen | Description | Documentation links |
|---|---|---|
Analytics & Dashboard | The Analytics & Dashboard screen shows widgets that provide valuable insights into your Checkmarx One data at a glance. | |
Application Risk Management | The Application Risk Management screen shows key information about the riskiest Applications in your account. This helps you to prioritize remediation of the most critical risks across your entire organization. | |
Cloud Insights | The Cloud Insights screen shows data identified by integrating your runtime environments with Checkmarx One. This includes detailed information about the containers in your account and the vulnerabilities identified in the corresponding Checkmarx One projects. |
Screen | Description | Documentation links |
|---|---|---|
Projects | The Projects screen shows aggregated metrics for the projects in your account as well as a list of all projects. On this screen, you can create and edit projects, initiate scans and open projects to view detailed results. | |
Applications | The Applications screen shows aggregated metrics for the applications in your account as well as a list of all applications. On this screen, you can edit application settings, add projects to applications and open applications to view detailed information. | |
Environments | A Checkmarx One Environment defines a URL or API source to be scanned using the DAST scanner. Typically, a Checkmarx One Environment corresponds to a web application. The scan results remain associated with the environment whenever the source code is scanned. | |
Software Supply Chain | The Software Supply Chain screen shows results for projects scanned using the Software Supply Chain scanners: Secret Detection and Repository Health (OSSF Scorecard). |
Screen | Description | Documentation links |
|---|---|---|
Scans | The Scans screen shows aggregated metrics for all scans run in your account, as well as a list of all of the scans. You can drill down to see results for each of the scanners run in the scan (SAST, SCA, IaC Security and API Security). | |
SAST Presets | Presets are sets of queries that a user can select in order to obtain more accurate scans results. The SAST Presets screen shows information about all SAST presets in your account, and enables you to create new custom presets. | |
IaC Presets | The IaC Presets screen shows information about all IaC Security presets in your account, and enables you to create new custom presets. | |
Query Editor | The Query Editor screen enables you to easily and intuitively customize the SAST queries, or create your own custom queries. | |
Policies | The Policies screen shows information about all security policies configured in your account, as well as a list of policy violation incidents that have occurred. You can edit existing policies and create new ones. |
Screen | Description | Documentation links |
|---|---|---|
Integrations | The Integrations screen provides information about a wide range of integration options, including CI/CD and IDE plugins, SCM integrations and, Feedback apps. There are dedicated tabs for setting up new integrations, managing Feedback Apps and migrating projects. |
Screen | Description | Documentation links |
|---|---|---|
SCA Inventory and Risks | The SCA Inventory and Risks screen shows a comprehensive list of packages identified in your account as well as the risks associated with those packages. | |
SCA AppSec Knowledge Center | The SCA AppSec Knowledge Center enables you to search our extensive database for information about specific vulnerabilities and the package versions that are affected by those vulnerabilities. The database includes CVEs as well as "untracked" vulnerabilities that have been cataloged by the Checkmarx Vulnerability Research Team. | |
API Inventory | The API Inventory screen shows a comprehensive list of the APIs used in your account as well as the risks associated with those APIs. | |
Codebashing | This opens the Codebashing portal for your linked account. Codebashing is Checkmarx's interactive AppSec training platform. |
Screen | Description | Documentation links |
|---|---|---|
License | The License screen shows info about the licenses associated with your account and your license consumption. It also enables you to submit a request for a license upgrade. | |
Global Settings | The Global Settings screens enables you to configure parameters on the tenant level. These parameters are applied to all applications, projects and scans in the tenant account. | |
Identity and Access Management | The Identity and Access Management console enables the account administrators to manage all aspects of user access and authentication, including:
| |
Imports | The Imports screen enables you to Import an existing SAST environment into Checkmarx One. | |
Language | Select the display language for your Checkmarx One web application. Options are: English, Korean or Chinese (traditional) | |
Access Control | The Access Control screen enables the currently logged in user to reset his authentication method. |
Screen | Description | Documentation links |
|---|---|---|
Contact Support | Open a support ticket. | |
Open Feature Request | Submit a feature request. | |
Version | Shows the version of Checkmarx One currently running for your account. |