builtin:appsec.runtime-vulnerability-detection)
Automated Runtime Vulnerability Analytics helps you quickly and completely understand each detected vulnerability in your environment and how to remediate it, allowing you to prioritize which vulnerabilities to fix first. Note: Enabling Third-party or Code-level Vulnerability Analytics consumes Application Security units. For details, see the Application Security Monitoring documentation.
builtin:appsec.runtime-vulnerability-detection
group:appsec.vulnerability-analytics
group:appsec
environment
GET | Managed | https://{your-domain}/e/{your-environment-id}/api/v2/settings/schemas/builtin:appsec.runtime-vulnerability-detection |
SaaS | https://{your-environment-id}.live.dynatrace.com/api/v2/settings/schemas/builtin:appsec.runtime-vulnerability-detection | |
Environment ActiveGate | https://{your-activegate-domain}/e/{your-environment-id}/api/v2/settings/schemas/builtin:appsec.runtime-vulnerability-detection |
To execute this request, you need an access token with Read settings (settings.read
) scope. To learn how to obtain and use it, see Tokens and authentication.
enableRuntimeVulnerabilityDetection
globalMonitoringModeTPV
Global third-party vulnerability detection control defines the default for all processes.
MONITORING_OFF
MONITORING_ON
technologies
Vulnerability Analytics can be enabled/disabled per supported technology.
enableCodeLevelVulnerabilityDetection
globalMonitoringModeJava
Global Java code-level vulnerability detection control defines the default for all process groups. You can use monitoring rules to override the default for certain processes.
Code-level vulnerability detection for Java has been recently released as early access version. It has been designed to carry a production-ready performance footprint. The overhead is depending on your application, but should be negligible in most cases. You have to enable the OneAgent feature "Java code-level vulnerability evaluation" to get started.
MONITORING_OFF
MONITORING_ON
globalMonitoringModeDotNet
Global .NET code-level vulnerability detection control defines the default for all process groups. You can use monitoring rules to override the default for certain processes.
Code-level vulnerability detection for .NET has been recently released as a preview version. It has been designed to carry a production-ready performance footprint. The overhead is depending on your application, but should be negligible in most cases. You have to enable the OneAgent feature ".NET code-level vulnerability evaluation" to get started.
MONITORING_OFF
MONITORING_ON
Technology
objectenableDotNet
enableDotNetRuntime
enableGo
enableJava
enableJavaRuntime
enableKubernetes
enableNodeJs
enableNodeJsRuntime
enablePhp