Skip to content

Application

An Application describes the details for an inventoried application as reported by an Application Security tool or other Developer-centric tooling. Applications can be defined as Kubernetes resources, Containerized resources, or application hosting-specific cloud sources such as AWS Elastic BeanStalk, AWS Lightsail, or Azure Logic Apps.

Attributes

Section titled “Attributes”

name

  • Type: string_t
  • Requirement: recommended

The name of the application.

owner

  • Type: user
  • Requirement: recommended

The identity of the service or user account that owns the application.

uid

  • Type: string_t
  • Requirement: recommended

The unique identifier for the application.

criticality

  • Type: string_t
  • Requirement: optional

The criticality of the application as defined by the event source.

data

  • Type: json_t
  • Requirement: optional

Additional data describing the application.

desc

  • Type: string_t
  • Requirement: optional

A description or commentary for an application, usually retrieved from an upstream system.

group

  • Type: group
  • Requirement: optional

The name of the related application or associated resource group.

hostname

  • Type: hostname_t
  • Requirement: optional

The fully qualified name of the application.

labels

  • Type: string_t
  • Requirement: optional

The list of labels associated to the application.

region

  • Type: string_t
  • Requirement: optional

The cloud region of the resource.

resource_relationship

  • Type: graph
  • Requirement: optional

A graph representation showing how this application relates to and interacts with other entities in the environment. This can include parent/child relationships, dependencies, or other connections.

risk_level

  • Type: string_t
  • Requirement: optional

The risk level, normalized to the caption of the risk_level_id value.

risk_level_id

  • Type: integer_t
  • Requirement: optional
  • Values:
    • 0 - Info
    • 1 - Low
    • 2 - Medium
    • 3 - High
    • 4 - Critical
    • 99 - Other: The risk level is not mapped. See the risk_level attribute, which contains a data source specific value.

The normalized risk level id.

risk_score

  • Type: integer_t
  • Requirement: optional

The risk score as reported by the event source.

sbom

  • Type: sbom
  • Requirement: optional

The Software Bill of Materials (SBOM) associated with the application

tags

The list of tags; {key:value} pairs associated to the application.

type

  • Type: string_t
  • Requirement: optional

The type of application as defined by the event source, e.g., GitHub, Azure Logic App, or Amazon Elastic BeanStalk.

uid_alt

  • Type: string_t
  • Requirement: optional

An alternative or contextual identifier for the application, such as a configuration, organization, or license UID.

url

  • Type: url
  • Requirement: optional

The URL of the application.

version

  • Type: string_t
  • Requirement: optional

The semantic version of the application, e.g., 1.7.4.

Constraints

Section titled “Constraints”

At least one of: uid, name

Used By

Section titled “Used By”