Checkmarx Import
Checkmarx Import
Section titled “Checkmarx Import”Import static application security testing (SAST) results from Checkmarx into NEURO.
Supported Formats
Section titled “Supported Formats”- XML Export - Checkmarx scan results export
How to Import
Section titled “How to Import”- Export scan results from Checkmarx CxSAST
- Navigate to Findings in NEURO
- Click Import → Checkmarx
- Upload the XML file
- Review findings with code location details
- Import selected findings
Mapped Fields
Section titled “Mapped Fields”| Checkmarx Field | NEURO Field |
|---|---|
| QueryName | title |
| Description | description |
| Severity | severity |
| SourceFile | affected_asset |
| Line | code_location |
| DeepLink | references |
| Categories | tags |
Severity Mapping
Section titled “Severity Mapping”| Checkmarx Severity | NEURO Severity |
|---|---|
| High | High |
| Medium | Medium |
| Low | Low |
| Information | Info |
Features
Section titled “Features”Code Location Tracking
Section titled “Code Location Tracking”- Source file path
- Line number
- Code snippet context
- Data flow path
Query Categories
Section titled “Query Categories”Checkmarx query categories are mapped to NEURO tags for filtering.
False Positive Handling
Section titled “False Positive Handling”Findings marked as “Not Exploitable” in Checkmarx are flagged for review.
Next: Fortify Import