Configure the Wiz Application Vulnerabilities Integration

  • Release version: Zurich
  • Updated March 27, 2026
  • 2 minutes to read

    • Configure the Wiz Application Vulnerabilities, SCA, and Secrets Integrations.

    Before you begin

    Role required: sn_vul_wiz.configure_integration

    Procedure

    1. Navigate to All > Wiz Vulnerability Integration > Administration > Configuration.
    2. Select the App Vulnerabilities Configuration tab.
    3. Fill in the fields.
      Field or check box Description
      Application List Record Count Enter a value up to 1000 for the number of records processed at a time by the Application List Integration.
      Software Composition Analysis (SCA) Findings Record Count Enter a value up to 1000 for the number of records processed at a time by the SCA Findings Integration.
      Manage Exceptions in ServiceNow

      If check box is not selected.

      If you leave the check box unselected, state of deferred findings imported from Wiz is preserved.

      Ignored findings (status: REJECTED) imported from Wiz are displayed as findings (application vulnerable items) in the state: Deferred reason: Risk Accepted in your ServiceNow AI Platform® instance.

      If check box is selected.

      If you select the check box, ignored findings from Wiz are processed by the Exception Management workflow in your ServiceNow AI Platform® instance.

      Ignored findings (status: REJECTED) imported from Wiz are transitioned to the Open state in your instance.
      Secret Findings Record Count Enter a value up to 1000 for the number of records processed at a time by the Secret Findings Integration.
    4. Optional: Backdate the integration run.
      See Configure the Wiz Vulnerability Response Integration for more information.
    5. Select Save and test.

      If the credentials have been saved and validated successfully a message is displayed.

      • Application List Integration - Imports applications data from Wiz to the Discovered Applications [sn_vul_app_release] table. Populates fields such as, Product Model, Source application ID for Wiz, and the GitHub link [url] for the repository.
      • SCA Findings Integration - Imports SCA data and creates a finding (AVIT) on the Application Vulnerable Items [sn_vul_app_vulnerable_item] table. Data includes the associated vulnerability, discovered application, and package. On the Findings tab, the Source AVIT ID is provided by Wiz. Source link points to the Wiz endpoint. The integration checks to see if a discovered application record exists, and, if one is not found, one is created.
      • Secret Findings Integration - Data includes the associated vulnerability, discovered application, and Source AVIT ID and Source severity on the Findings tab.

      Data population. For more information about Application Vulnerability Response, integrations, and imported data, see Exploring Application Vulnerability Response.