# Corgea Documentation ## Docs - [Corgea Agent](https://docs.corgea.app/agent.md): AI-powered assistant for managing security vulnerabilities in your codebase - [Agentic Integrations](https://docs.corgea.app/agentic_integrations.md): Empower your AI coding agents to scan, triage, and fix security vulnerabilities autonomously - [Get Failed Login Attempts](https://docs.corgea.app/api-reference/authentication/get-failed-login-attempts.md): Retrieve failed login attempts for users - [Get Login Attempts](https://docs.corgea.app/api-reference/authentication/get-login-attempts.md): Retrieve successful login attempts for users - [Get User Failed Login Attempts](https://docs.corgea.app/api-reference/authentication/get-user-failed-login-attempts.md): Retrieve failed login attempts for a specific user - [Get User Login Attempts](https://docs.corgea.app/api-reference/authentication/get-user-login-attempts.md): Retrieve successful login attempts for a specific user - [Verify Token](https://docs.corgea.app/api-reference/authentication/verify-token.md): Verify the API token and optionally return user information - [Verify Token (Deprecated)](https://docs.corgea.app/api-reference/authentication/verify-token-deprecated.md) - [API Reference](https://docs.corgea.app/api-reference/introduction.md): Get started with the Corgea API - [Get Issue](https://docs.corgea.app/api-reference/issues/get-issue.md): Retrieves details of a specific issue - [Get Issues for Scan](https://docs.corgea.app/api-reference/issues/get-issues-for-scan.md): Retrieves a list of issues for a specific scan - [Get SCA Issues](https://docs.corgea.app/api-reference/issues/get-sca-issues.md): Retrieve a list of Software Composition Analysis (SCA) issues - [Get SCA Issues for Scan](https://docs.corgea.app/api-reference/issues/get-sca-issues-for-scan.md): Retrieve SCA issues for a specific scan - [List All Issues](https://docs.corgea.app/api-reference/issues/list-all-issues.md): Retrieve a list of all security issues for the authenticated user's company - [List Blocking Rules](https://docs.corgea.app/api-reference/policies/list-blocking-rules.md): Retrieve all blocking rules for the authenticated user's company - [List Projects](https://docs.corgea.app/api-reference/projects/list-projects.md): Retrieve a list of projects for the authenticated user's company - [Update Project Tags](https://docs.corgea.app/api-reference/projects/update-project-tags.md): Add, remove, or replace tags for a project. Incoming tags are trimmed, lowercased, empty values are ignored, and duplicate values are removed before the update is applied. - [Check Blocking Rules](https://docs.corgea.app/api-reference/scans/check-blocking-rules.md): Check if scan issues violate any blocking rules - [Get Scan](https://docs.corgea.app/api-reference/scans/get-scan.md): Retrieves details of a specific scan - [Get Scan Report](https://docs.corgea.app/api-reference/scans/get-scan-report.md): Retrieve scan report in HTML or SARIF format - [Get Scans](https://docs.corgea.app/api-reference/scans/get-scans.md): Retrieves a list of scans for the authenticated user's company - [Check Upload Status](https://docs.corgea.app/api-reference/starting-corgea-scan/check-upload-status.md): Check the current status of an upload - [Continue Scan Upload](https://docs.corgea.app/api-reference/starting-corgea-scan/continue-scan-upload.md): Continue uploading chunks for an existing scan - [Start New Scan](https://docs.corgea.app/api-reference/starting-corgea-scan/start-new-scan.md): Initiates a new BLAST scan with file upload. Accepts one or more files for scanning. - [Upload CI/CD Data](https://docs.corgea.app/api-reference/uploading-3rd-party-scan/upload-cicd-data.md): Upload CI/CD pipeline metadata and context information for a specific scan run. - [Upload Git Config](https://docs.corgea.app/api-reference/uploading-3rd-party-scan/upload-git-config.md): Upload Git configuration data for a specific scan run to help with repository URL parsing and analysis. - [Upload Scan](https://docs.corgea.app/api-reference/uploading-3rd-party-scan/upload-scan.md): Upload a completed scan report from CLI tools. This endpoint receives pre-generated scan results from Semgrep, Snyk, Checkmarx, CodeQL, and Fortify and integrates them into the system. - [Upload Source Code File](https://docs.corgea.app/api-reference/uploading-3rd-party-scan/upload-source-code-file.md): Upload individual source code files for a specific scan run. This is used to upload the actual source files that will be analyzed. - [Azure DevOps](https://docs.corgea.app/azure_devops.md): Comprehensive Guide to Configuring Azure DevOps with Corgea - [Bitbucket](https://docs.corgea.app/bitbucket.md): Comprehensive Guide to Configuring Bitbucket with Corgea - [AI-native SAST](https://docs.corgea.app/blast.md): Comprehensive vulnerability coverage in Corgea - [Blocking Rules](https://docs.corgea.app/blocking_rules.md): Blocking rules help enforce security and quality standards by preventing non-compliant code from being merged. - [Changelog](https://docs.corgea.app/changelog.md): Product updates and announcements - [CLI](https://docs.corgea.app/cli.md): Supercharge your security from the command line - [Code Quality](https://docs.corgea.app/code-quality-scanner.md): AI-powered code review tool for maintainability, readability, and performance - [Content Access Management](https://docs.corgea.app/content-access-management.md): Control project access for different teams and members. - [False Positive Detection](https://docs.corgea.app/false_positive.md): Corgea Auto-detects False Positives - [Issue Fingerprinting](https://docs.corgea.app/fingerprint.md): Learn how Corgea uniquely identifies and tracks security vulnerabilities across scans - [Applying Fixes](https://docs.corgea.app/fixes.md): Start fixing vulnerable code. - [GitHub](https://docs.corgea.app/github.md): Start generating fixes for your repository - [GitLab](https://docs.corgea.app/gitlab.md): Setting up a GitLab Integration in Corgea - [Infrastructure as Code (IaC) Scanning](https://docs.corgea.app/iac.md): IaC Scanning automatically detects security misconfigurations and exposed secrets in your infrastructure code before deployment. It analyzes configuration files for Kubernetes, Terraform, Docker, CloudFormation, and other IaC tools to identify security risks, compliance violations, and best practice… - [Introduction](https://docs.corgea.app/introduction.md): Welcome to Corgea's documentation. - [Issue Assignment & Status Management](https://docs.corgea.app/issue_assignment.md): Assign and track security issues across your team - [Issue Export](https://docs.corgea.app/issue_export.md): Export security findings in various formats including SARIF, CSV, and PDF - [JIRA](https://docs.corgea.app/jira.md): Setting up the JIRA Integration in Corgea - [JWT Auth](https://docs.corgea.app/jwt-token.md): Authenticate API requests using JWT Bearer tokens issued by your identity provider (Entra ID, Okta, etc.) for system-to-system integrations. - [Legal](https://docs.corgea.app/legal.md): Corgea's Legal Documents - [Model Context Protocol (MCP)](https://docs.corgea.app/modelcontextprotocol.md): Connect AI assistants to Corgea using the Model Context Protocol - [Permission Groups](https://docs.corgea.app/permission_groups.md): This document provides a comprehensive overview of all permissions available for assignment to permission groups in the Corgea platform. Permissions control what actions users can perform within the system. - [PII/PHI Scanning](https://docs.corgea.app/pii.md): PII/PHI Scanning automatically detects and identifies Personally Identifiable Information (PII) and Protected Health Information (PHI) in your codebase. It scans source code, configuration files, and documentation to find sensitive data patterns like credit card numbers, social security numbers, ema… - [PolicyIQ](https://docs.corgea.app/policies.md): Enriching Corgea with Business Context through Policies - [Project Management](https://docs.corgea.app/project.md): Configure scanning behavior for your project including CWE filters and file ignore rules - [Quickstart](https://docs.corgea.app/quickstart.md): Setup Corgea in less than 5 mins. - [Reporting](https://docs.corgea.app/reporting.md): Track scan activity, vulnerabilities, and developer insights across your organization. - [Dependency Scanning (SCA)](https://docs.corgea.app/sca.md): Dependency Scanning, also known as Software Composition Analysis (SCA), automatically identifies known security vulnerabilities in your project's third-party dependencies and libraries. It scans dependency manifest files (like `package.json`, `requirements.txt`, `pom.xml`) and provides detailed vuln… - [Scheduled Scans](https://docs.corgea.app/scheduled-scans.md): Automatically run security scans on a recurring schedule - [Secret Scanning](https://docs.corgea.app/secret-scanning.md): Detect and secure hardcoded secrets in your codebase - [Security](https://docs.corgea.app/security.md): Corgea's Security and Privacy Standards - [SLA Management](https://docs.corgea.app/sla_management.md): Configure and manage Service Level Agreements (SLAs) for security issues - [Slack](https://docs.corgea.app/slack.md): Setting up the Slack Integration with Corgea - [SSO](https://docs.corgea.app/sso.md): Enable seamless and secure access to multiple applications with Single Sign-On (SSO) using the SAML protocol, enhancing user experience and security. - [Teams](https://docs.corgea.app/teams.md): Organize users into teams and manage project access at scale with team-based permissions - [Uploading Scans](https://docs.corgea.app/upload-report.md): Start generating fixes for your repository - [User Management](https://docs.corgea.app/user_management.md): Manage your users in Corgea - [Visual Studio 2022](https://docs.corgea.app/vs2022_extension.md): Bring Corgea to your Visual Studio Code - [Visual Studio Code](https://docs.corgea.app/vsc_extension.md): Bring Corgea to your Visual Studio Code - [Vulnerability Disclosure Policy](https://docs.corgea.app/vulnerability-disclosure.md): Guidelines for security researchers to responsibly report vulnerabilities in Corgea products and services - [Webhooks](https://docs.corgea.app/webhooks.md): Automate HTTP callbacks from Corgea to any external system - [Zapier](https://docs.corgea.app/zapier.md): Setting up the Zapier Integration in Corgea ## OpenAPI Specs - [openapi](https://docs.corgea.app/api-reference/openapi.json) ## Optional - [Service Status](https://status.corgea.app/) - [Blog](https://corgea.com/blog)