Data from integration saved in HackEDU

We make a request to /Contrast/api/ng/:orgUUID/applications and get the list of the applications you have registered in your Contrast Security account. From the response, we only save the app_id of the applications you choose in the last integration step.

[ 
{
"name": "[REDACTED]",
"path": "[REDACTED]",
"language": "[REDACTED]",
"created": "[REDACTED]",
"status": "[REDACTED]",
"importance": "[REDACTED]",
"archived": "[REDACTED]",
"assess": "[REDACTED]",
"assessPending": "[REDACTED]",
"master": "[REDACTED]",
"notes": "[REDACTED]",
"defend": "[REDACTED]",
"defendPending": "[REDACTED]",
"roles": "[REDACTED]",
"missingRequiredFields": "[REDACTED]",
"links": "[REDACTED]",
"app_id": "3c938a12-1d43-470b-955d-9d9727cd1db9",
"last_seen": "[REDACTED]",
"last_reset": "[REDACTED]",
"size_shorthand": "[REDACTED]",
...
}
]


Each time the sync process is run we make an api call to the filter endpoint: /Contrast/api/ng/:orgUUID/traces/:appUUID/filter, requesting information only for the applications you had registered in the integration process. The full response from this request is saved except for the evidence field, which may contain sensible information.

{ 
"app_version_tags": [],
"bugtracker_tickets": [],
"category": "Caching",
"closed_time": null,
"confidence": "Low",
"default_severity": "NOTE",
"discovered": 1598461440000,
"evidence": "[REDACTED]",
"first_time_seen": 1598461440000,
"hasParentApp": false,
"impact": "Low",
"instance_uuid": "2BQR-MWI8-NI2O-6AM6",
"language": "Java",
"last_time_seen": 1598461440000,
"last_vuln_time_seen": 1598461440000,
"license": "Licensed",
"likelihood": "Low",
"organization_name": "HackEDU",
"reported_to_bug_tracker": false,
"reported_to_bug_tracker_time": null,
"rule_name": "cache-controls-missing",
"rule_title": "Anti-Caching Controls Missing",
"severity": "Note",
"status": "Reported",
"sub_status": "",
"sub_title": "Anti-Caching Controls Missing detected",
"substatus_keycode": null,
"tags": [],
"title": "Anti-Caching Controls Missing detected",
"total_traces_received": 10,
"uuid": "2BQR-MWI8-NI2O-6AM6",
"visible": true
}
Did this answer your question?