Enterprise application security programs operate across hundreds of repositories, distributed engineering teams, and complex release pipelines. Security tooling must support automation, governance, and measurable risk reduction across the SDLC.
The Checkmarx One 3.54 release focuses on operational maturity for DevSecOps programs. Updates across SAST, SCA, DAST, secrets detection, and analytics introduce stronger identity controls, improved vulnerability management workflows, and better reporting across scanners.
For enterprise leaders responsible for secure software delivery, these updates improve risk prioritization, reduce operational friction for development teams, and provide clearer metrics for security posture.
AI QUERY BUILDER FOR FASTER CxQL CUSTOMIZATION
Checkmarx One introduces an AI assisted Query Builder within the Queries Editor. The feature helps AppSec teams generate and refine CxQL queries using guided prompts.
Key capabilities include
- automated query generation based on security patterns
- quick regeneration and editing for improved accuracy
- copy ready queries for integration into scanning rules
Enterprise impact
Large organizations often maintain custom SAST rules aligned with internal security policies. Writing and maintaining these queries requires specialized expertise.
The AI Query Builder supports
- faster query creation for secure coding rules
- improved consistency in vulnerability detection
- reduced false positives from poorly written queries
Operational example
A security engineer refining a query for a legacy application can quickly test variations and deploy updates across multiple repositories without long review cycles.
