Import the application vulnerable items from the Vulnerability Response Integration with Black Duck

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • Import the application vulnerable items (AVIs) from the Vulnerability Response integration with Black Duck so that the integration runs sequentially. A successful integration helps you to identify and ingest the AVIs.

    Before you begin

    Role required: App-Sec Manager group

    About this task

    You can view the scan results from the Vulnerability Response Integration with Black Duck, insert AVIs in your instance, and enrich your third-party vulnerability data. By default, if the scanner record is in the Closed state, AVIs aren’t created. You can control existing AVIs by using the property sn_vul_create_closed.

    Procedure

    1. Navigate to All > Black Duck Vulnerability Integration > Integrations.
    2. Select an integration.
      For example, you can select the Black Duck Application Vulnerable Item Integration.
    3. Select Execute Now.
      Note:
      The Vulnerability Response Integration with Black Duck is intended to provide you with the most complete data retrieval. Running these integrations out of order could result in incomplete data and requires ServiceNow and Application Vulnerability Response expertise.

      After you import all the SCA vulnerabilities from the Vulnerability Response Integration with Black Duck, you can view the AVIs and the third-party vulnerability data.

      Note:
      This is a scheduled job. In case it is not scheduled, you will be required to trigger this manually by selecting "Execute Now".