• Semgrep AppSec Platform

View runtime context from Sysdig in Semgrep AppSec Platform

The Semgrep Sysdig integration can ingest runtime context from your Sysdig account. This allows you to prioritize findings based on deployment status.

Prerequisites

Before proceeding, ensure that:

• You have a license for Semgrep Supply Chain
• You have the following tools and integrations set up in your Sysdig account:
  • Sysdig Secure
  • Sysdig Shield, Host Shield, or Agentless Scanning
  • The Semgrep Sysdig integration
    • Ensure that you've completed the steps to link source to runtime by adding a Docker label
• You have set up a connection between Semgrep and your source code manager (SCM).

Enable the Sysdig integration

1. Sign in to Semgrep AppSec Platform.

2. Navigate to Settings > Integrations.

3. Go to Integrations, and click + Add > Sysdig. Figure. Add a new Sysdig integration. Figure. Add Sysdig as an additional integration.

4. In the dialog that appears, provide the following information:

   1. URL: The Sysdig Platform URL for your account.
   2. API token: The Sysdig API token associated with your account. See Retrieve the Sysdig API Token for more information on how to retrieve your token. Figure. Configure the Sysdig integration.

5. Click Connect. Figure. Successfully configured Sysdig integration.

6. Within several hours, you should see the Deployment status for each project on the project's settings page. Figure. Sysdig data in Project Settings.

Limitations

• Each Semgrep deployment can only have one Sysdig integration.
• The runtime context data is only synced for Semgrep projects that:
  • Are connected to SCMs
  • Have been scanned within the previous 30 days
  • Have Supply Chain findings
• The integration syncs your data every 24 hours, but it may take up to 1 day for Semgrep to reflect any changes to your repositories and infrastructure.

Troubleshooting

If you see a Connection Error message under your Sysdig integration

If you see the Connection Error message under your Sysdig integration, there was an issue establishing a connection or running a sync job for a provider you have connected. Check your connection settings to verify that your configuration is correct.

If the connection settings are correct, contact Support for further assistance.

If you're not seeing data in your project settings page

If you're not seeing data for your project in the project settings page:

• Wait for one day for your data to sync.
• Confirm that an image of the project has been deployed in your infrastructure that Sysdig has access to
• If, after one day, you're still not seeing data, ensure that you meet the integration's prerequisites.
• If, after one day, you meet the integration's prerequisites and confirmed deployment, contact Support for further assistance.

---

Not finding what you need in this doc? Ask questions in our Community Slack group, or see Support for other ways to get help.