The Checkmarx One JetBrains plugin enables you to import results from a Checkmarx One scan directly into your IDE.
Explore the docs »
Marketplace »
Report Bug
·
Request Feature
Table of Contents
Checkmarx continues to spearhead the shift-left approach to AppSec by bringing our powerful AppSec tools into your IDE. This empowers developers to identify vulnerabilities and remediate them as they code. The Checkmarx One (AST) JetBrains plugin integrates seamlessly into your IDE, enabling you to access the full functionality of your Checkmarx One account (SAST, SCA, IaC Security) directly from your IDE.
You can run new scans, or import results from scans run in your Checkmarx One account. Checkmarx provides detailed info about each vulnerability, including remediation recommendations and examples of effective remediation. The plugin enables you to navigate from a vulnerability to the relevant source code, so that you can easily zero-in on the problematic code and start working on remediation.
This plugin provides easy integration with JetBrains and is compatible with all JetBrains IDE products (e.g., IntelliJ IDEA, PyCharm, WebStorm etc.).
-
Access the full power of Checkmarx One (SAST, SCA, and IaC Security) directly from your IDE.
-
Run a new scan from your IDE even before committing the code, or import scan results from your Checkmarx One account.
-
Rescan an existing branch from your IDE or create a new branch in Checkmarx One for the local branch in your workspace.
-
Provides actionable results including remediation recommendations. Navigate from results panel directly to the highlighted vulnerable code in the editor and get right down to work on the remediation.
-
Group and filter results
-
Triage results (by adjusting the severity and state and adding comments) directly from the JetBrains console (currently supported for SAST and IaC Security)
-
Apply Auto Remediation to automatically remediate open source vulnerabilities, by updating to a non-vulnerable package version.
-
Links to Codebashing lessons
-
AI Secure Coding Assistant (ASCA) - A lightweight scan engine that runs in the background while you work, enabling developers to identify and remediate secure coding best practice violations as they code.
-
You are running IntelliJ version 2022.2+ or another JetBrains IDE that is based on a supported version of IntelliJ.
-
You have an API key for your Checkmarx One account. To create an API key, see Generating an API Key.
The following are the minimum required roles for running an end-to-end flow of scanning a project and viewing results via the CLI or plugins:
- CxOne composite role
ast-scanner- CxOne role
view-policy-management- IAM role
default-roles
-
Verify that all prerequisites are in place.
-
Install the Checkmarx One plugin and configure the settings as described here.
To see how you can use our tool, please refer to the Documentation
We appreciate feedback and contribution to the JETBRAINS PLUGIN! Before you get started, please see the following:
Distributed under the Apache 2.0. See LICENSE for more information.
Checkmarx - Checkmarx One Integrations Team
Project Link: https://github.com/Checkmarx/ast-jetbrains-plugin
Find more integrations from our team here
© 2022 Checkmarx Ltd. All Rights Reserved.
We’d love to hear your feedback! If you come across a bug or have a feature request, please let us know by submitting an issue in GitHub Issues.