Getting Started with SAST/Secrets

the soos sast/secrets connector allows you to bring your own sast tool and ingest the results with soos centralize your sast results in the same dashboard as your sca, sbom, container, and/or dast results and leverage soos's issue management workflows for your sast issues getting started ingesting sast or secret results is quick and easy, once you have an account there are a number of ways to run your first scan/ingest, from there you can add additional configurations and integrations create a trial first you'll need a trial account, follow initial account creation docid\ pkpcajqtnqjrxbll1hugc to get set up run your first scan the quickest way to run to ingest scan results is to run your sast/secrets tool and generated a sarif file, then just drop the files into the run a quickscan docid\ btqhfzqnd61qathhnhhb7 script or ci/cd integration use the sast/secrets tab of the integrations docid\ becfu au8wgt224lmm62g page to configure a scan and ingest using a script or ci/cd system how do sast scans appear in the soos app? sast scans will appear on your developer dashboad docid\ fhvqnychnq4kw2bmmnnin as projects project names can be specified using the script or ci/cd integration if the project name corresponds to an existing project, the scan indicator will be used to show all scan types for the project see projects docid\ dxqzagmx rouuqu8lbent for more details on determining and switching scan types for a project technical readme want the technical details? check out or github readme it has all the details you'll need you can also browse the full source of our sast integration script under this same github repo, if you're curious! configuration the soos configuration system docid 5osexx1iyyvd unye3u7f provides a highly flexible and overridable configuration system integrations soos supports numerous integrations docid\ becfu au8wgt224lmm62g , including issue management integrations docid\ xfobdotvahwh1l6epafnq