Manage security risk across the SDLC by tracing technical asset lineage. View asset dependencies and runtime context in assets, issues, and policies.
Code to Cloud context is integrated throughout the user interface to help you visualize dependencies and enforce security.
Topology graph: Located in the Business Applications side card, this tab visualizes the entire path to production (
Code → Build → Deploy → Run), allowing you to see how assets are interconnectedDedicated Application Security asset inventories: Repository, Software Package and IaC Resources side cards include Code to Cloud tab. This graph maps the specific asset to its upstream source and downstream runtime deployments
Issue investigation: Vulnerabilities and IaC Misconfiguration issues include a Code to Cloud tab. This view traces the specific defect from the code file to the impacted runtime resource, helping verify if a vulnerability is actively deployed
Policy enforcement: Policies can be configured with runtime conditions. For example, you can block a build only if the detected vulnerability affects an asset that is destined for an internet-facing environment. For more information on creating policies, refer to Create Application Security policies