Checkmarx One JetBrains Plugin
The Checkmarx One JetBrains plugin enables you to import results from a Checkmarx One scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor. This plugin provides easy integration with JetBrains and is compatible with all JetBrains IDE products (e.g., IntelliJ IDEA, PyCharm, WebStorm etc.).
Note
All examples in this documentation will be shown for IntelliJ IDEA (for Java and JVM languages).
Main Features
Run a new scan from your IDE even before committing the code, or import scan results from your Checkmarx One account.
Show results from all scan types (SAST, SCA, and IaC Security)
Group and filter results
Navigate from results directly to the vulnerable code in the editor
Vulnerable code is highlighted in the editor
Triage results - edit the result predicate (severity, state and comments) directly from the Jetbrains console
Links to the relevant Codebashing lessons
Prerequisites
You have a Checkmarx One account and can run Checkmarx One scans on your source code.
Notice
Scans can be initiated via Checkmarx One, Checkmarx One CLI, SCM Plugins, CI/CD Plugins or REST APIs.
You have an API key for your Checkmarx One account. To create an API key, see Generating an API Key.
You are running IntelliJ version 2021.2+ or another JetBrains IDE that is based on a supported version of IntelliJ.