Skip to main content

Checkmarx One JetBrains Plugin

The Checkmarx One JetBrains plugin enables you to import results from a Checkmarx One scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor. This plugin provides easy integration with JetBrains and is compatible with all JetBrains IDE products (e.g., IntelliJ IDEA, PyCharm, WebStorm etc.).

Note

All examples in this documentation will be shown for IntelliJ IDEA (for Java and JVM languages).

Main Features

  • Run a new scan from your IDE even before committing the code, or import scan results from your Checkmarx One account.

  • Show results from all scan types (SAST, SCA, and IaC Security)

  • Group and filter results

  • Navigate from results directly to the vulnerable code in the editor

  • Vulnerable code is highlighted in the editor

  • Triage results - edit the result predicate (severity, state and comments) directly from the Jetbrains console

  • Links to the relevant Codebashing lessons

Prerequisites

  • You have a Checkmarx One account and can run Checkmarx One scans on your source code.

Notice

Scans can be initiated via Checkmarx One, Checkmarx One CLI, SCM Plugins, CI/CD Plugins or REST APIs.

  • You have an API key for your Checkmarx One account. To create an API key, see Generating an API Key.

  • You are running IntelliJ version 2021.2+ or another JetBrains IDE that is based on a supported version of IntelliJ.