CxSCS License Types and Restrictions - Checkmarx
Free Virtual Summit Agentic AppSec Unleashed '26 is June 16th Register Now
Outlook Report The Future of Application Security in the Era of AI Download Now
Checkmarx for Developers
Blog
Research

CXSCS LICENSE TYPES AND RESTRICTIONS

Version: 2023.02
Last Updated – 02-21-2023
Supply Chain Security Threat API License Types and Restrictions

Product Description License Types (defined below)
Cx-SCS Package

“Package” means a collection of software components designed to work together to perform a specific function, identified by a unique set of attributes that include name, package manager, and version.

Licensed Customers may access the Cx-SCS Threat API by using the access credentials provided by Checkmarx to Customer. The technical specifications of the API query format will be set out in the Cx- SCS Threat API documentation.

Licensed Customers are entitled to use the Cx-SCS Threat API to scan Packages, up to the quantity of monthly Packages purchased by Customer, as set out in in the Quote.

A Package is deemed consumed once the Package name, package manager and version are sent to the API for scanning, regardless of the results delivered by the Cx-SCS Threat API. Unused Packages expire at the end of the month and do not roll over to the following month.