Skip to main content

Checkmarx One Visual Studio Extension (Plugin)

The Checkmarx One Visual Studio extension enables you to import results from a Checkmarx One scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.

Main Features

  • Checkmarx One results

    • Import Checkmarx One scan results into your IDE

    • Show results from all scan types (SAST, SCA, and KICS)

    • Group and filter results

    • Navigate from results directly to the vulnerable code in the editor

    • Vulnerable code is highlighted in the editor

    • Triage results - edit the result predicate (severity, state and comments) directly from the Visual Studio console

    • Links to Codebashing lessons

  • Checkmarx KICS Auto Scanning

    • Free tool, no Checkmarx account required

    • Run scans directly from your IDE

    • Scans are triggered automatically whenever a file is saved

Prerequisites (for Checkmarx One Results)

  • You have a Checkmarx One account and can run Checkmarx One scans on your source code.

Notice

Scans can be initiated via Checkmarx One, Checkmarx One CLI, SCM Plugins, CI/CD Plugins or REST APIs.

  • You have an API key for your Checkmarx One account. To create an API key, see Generating an API Key.

  • You are running Visual Studio version 2022.

In this section: