Getting Started with SAST/Secrets

the soos sast/secrets add on allows you to bring your own sast tool and ingest the results with soos centralize your sast results in the same dashboard as your sca, sbom, container, and/or dast results and leverage soos's issue management workflows for your sast issues getting started ingesting sast or secret results is quick and easy, once you have an account there are a number of ways to run your first scan/ingest, from there you can add additional configurations and integrations create a trial first you'll need a trial account, follow docid\ pkpcajqtnqjrxbll1hugc to get set up run your first scan the quickest way to run to ingest scan results is to run your sast/secrets tool and generated a sarif file, then just drop the files into the docid\ btqhfzqnd61qathhnhhb7 cli or ci/cd integration use the sast/secrets tab of the docid\ becfu au8wgt224lmm62g page to configure a scan and ingest using a cli or ci/cd system how do sast scans appear in the soos app? sast scans will appear on your https //kb soos io/projects dashboard as projects project names can be specified using the example scripts or ci/cd integration if the project name corresponds to an existing project, the scan indicator will be used to show all scan types for the project see docid\ dxqzagmx rouuqu8lbent for more details on determining and switching scan types for a project technical readme want the technical details? check out or https //github com/soos io/soos sast it has all the details you'll need you can also browse the full source of our sast cli under this same github repo, if you're curious! configuration the soos docid 5osexx1iyyvd unye3u7f provides a highly flexible and overridable configuration system integrations soos supports numerous docid\ becfu au8wgt224lmm62g , including docid\ xfobdotvahwh1l6epafnq