reorg of topics for new Code Security section in Security #26887
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
We're adding a new Code Security section as a tier 1 Security product. It replaces Code Analysis and absorbs SCA from Code Analysis and ASM and Code Security from ASM. So far I have created the new topic structure. I still need to: - revise content - test steps with new UI when a demo is available - remove old files and nav - add redirects - add screenshots if there is time before launch
michaelcretzman
added
Do Not Merge
michaelcretzman
changed the title
github-actions
bot
added
Architecture
kassenq
requested changes
Dec 31, 2024
content/en/security/code_security/software_composition_analysis/_index.md
Outdated
Show resolved
Hide resolved
content/en/security/code_security/software_composition_analysis/_index.md
Show resolved
Hide resolved
Comment on lines
104
to
112
| ## Enabling Code Security | ||
|
|
||
| To enable Code Security configure the [Datadog Tracing Library][9]. Detailed instructions for both methods can be found in the [**Security > Application Security > Settings**][10] section. | ||
|
|
||
| If you need additional help, contact [Datadog support][11]. | ||
|
|
||
| ## Disable Code Security | ||
|
|
||
| For information on disabling Code Security, see [Disabling Code Security][12]. |
There was a problem hiding this comment.
This should be pulled out into a separate setup page similar to what we have done with SAST and SCA
| @@ -0,0 +1,28 @@ | |||
| --- | |||
| title: Compatibility Requirements | |||
There was a problem hiding this comment.
The content on this page should move into a Setup page that lives under the Runtime Code Analysis (IAST) heading, similar to the SAST and SCA structures
content/en/security/code_security/static_analysis/static_analysis_rules/_index.md
Outdated
Show resolved
Hide resolved
content/en/security/code_security/static_analysis/static_analysis_rules/_index.md
Show resolved
Hide resolved
had to update the menu again
also fixed an issue with SAST Rules not showing up and causing an error
…og/documentation into mcretzman/DOCS-9484-code-sec-reorg
kassenq
requested changes
Jan 16, 2025
content/en/security/code_security/software_composition_analysis/setup_static/_index.md
Outdated
Show resolved
Hide resolved
kassenq
requested changes
Jan 16, 2025
content/en/security/code_security/software_composition_analysis/setup_runtime/_index.md
Outdated
Show resolved
Hide resolved
kassenq
requested changes
Jan 17, 2025
kassenq
requested changes
Jan 17, 2025
kassenq
requested changes
Jan 17, 2025
incorp PM review Co-authored-by: Kassen Qian <[email protected]>
hestonhoffman
approved these changes
Jan 22, 2025
There was a problem hiding this comment.
This is looking good! I found a couple of links that 404 inside the app, and here's a list of docs links that should be redirected (most of these were renamed/moved files):
/security/application_security/code_security/setup/compatibility
/security/application_security/code_security/setup/compatibility/dotnet
/security/application_security/code_security/setup/compatibility/java
/security/application_security/code_security/setup/compatibility/nodejs
/security/application_security/code_security/setup/compatibility/python
/security/application_security/code_security/setup/java
/security/application_security/code_security/setup/nodejs
/security/application_security/code_security/setup/python
/security/application_security/code_security/setup/dotnet
/security/application_security/software_composition_analysis/setup/compatibility/dotnet
/security/application_security/software_composition_analysis/setup/compatibility/go
/security/application_security/software_composition_analysis/setup/compatibility/java
/security/application_security/software_composition_analysis/setup/compatibility/nginx
/security/application_security/software_composition_analysis/setup/compatibility/nodejs
/security/application_security/software_composition_analysis/setup/compatibility/php
/security/application_security/software_composition_analysis/setup/compatibility/python
/security/application_security/software_composition_analysis/setup/compatibility/ruby
/code_analysis/static_analysis/generic_ci_providers
/code_analysis/static_analysis/setup
/code_analysis/static_analysis_rules
You can test them by adding https://docs-staging.datadoghq.com/mcretzman/DOCS-9484-code-sec-reorg/ to the start. I also added https://docs.datadoghq.com to make sure they were valid links on prod currently.
| </div> | ||
| {{% /site-region %}} | ||
|
|
||
| ## Overview | ||
| To set up Datadog Static Analysis, navigate to [**Software Delivery** > **Code Analysis**][1]. | ||
| To set up Datadog Static Analysis, navigate to [**Security** > **Code Security**][1]. |
There was a problem hiding this comment.
this works in preprod HQ: https://app.datadoghq.com/security/configuration/code-security/setup
|
|
||
| **Note:** To create Jira issues for vulnerabilities, you must configure the Jira integration, and have the `manage_integrations` permission. For detailed instructions, see the [Jira integration][3] documentation, as well as the [Role Based Access Control][4] documentation. | ||
|
|
||
| ## Enabling Code Security | ||
|
|
||
| To enable Code Security configure the [Datadog Tracing Library][9]. Detailed instructions for both methods can be found in the [**Security > Application Security > Settings**][10] section. | ||
| To enable Code Security configure the [Datadog Tracing Library][9]. Detailed instructions for both methods can be found in the [**Security > Code Security > Settings**][10] section. |
There was a problem hiding this comment.
404s (I think it's all of these security/configuration/code-security links. You can probably find/replace them
There was a problem hiding this comment.
this works in preprod HQ: https://app.datadoghq.com/security/configuration/code-security/setup
so I think we're good.
kassenq
approved these changes
Jan 22, 2025
bgdeutsch
approved these changes
Jan 23, 2025
drodriguezhdez
approved these changes
Jan 23, 2025
TovRudyy
approved these changes
Jan 23, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
We're adding a new Code Security section as a tier 1 Security product. It replaces Code Analysis and absorbs SCA from Code Analysis and ASM and Code Security from ASM.
So far I have created the new topic structure.
I still need to:
Merge instructions
Merge readiness:
Merge queue is enabled in this repo. To have it automatically merged after it receives the required reviews, create the PR (from a branch that follows the
<yourname>/descriptionnaming convention) and then add the following PR comment: