Application

application

An Application describes the details for an inventoried application as reported by an Application Security tool or other Developer-centric tooling. Applications can be defined as Kubernetes resources, Containerized resources, or application hosting-specific cloud sources such as AWS Elastic BeanStalk, AWS Lightsail, or Azure Logic Apps.

Attributes

Caption	Name	Type	Description
Business Criticality	`criticality`	String	The criticality of the application as defined by the event source.
Data	`data`	JSON	Additional data describing the application.
Application Description	`desc`	String	A description or commentary for an application, usually retrieved from an upstream system.
Group	`group`	Group[]	The name of the related application or associated resource group.
Hostname	`hostname`	Hostname	Entity:`HOSTNAME` The fully qualified name of the application.
Labels	`labels`	String[]	The list of labels associated to the application.
Application Name	`name`	String	The name of the application.
Owner	`owner`	User[]	Entity:`USER` The identity of the service or user account that owns the application.
Raw Data	`raw_data`	JSON	Group:`context` The event data as received from the event source.
Record ID	`record_id`	String	Group:`primary` Unique identifier for the object
Region	`region`	String	The cloud region of the resource.
Application Relationship	`resource_relationship`	Graph[]	A graph representation showing how this application relates to and interacts with other entities in the environment. This can include parent/child relationships, dependencies, or other connections.
Risk Level	`risk_level`	String	The risk level, normalized to the caption of the risk_level_id value.
Risk Level ID	`risk_level_id`	Integer	The normalized risk level id. `0`: Info (`INFO`) `1`: Low (`LOW`) `2`: Medium (`MEDIUM`) `3`: High (`HIGH`) `4`: Critical (`CRITICAL`) `99`: Other (`OTHER`)
Risk Score	`risk_score`	Integer	The risk score as reported by the event source.
Related SBOM	`sbom`	Software Bill of Materials[]	The Software Bill of Materials (SBOM) associated with the application
Tags	`tags`	Key:Value object[]	The list of tags; key:value pairs associated to the application.
Application Type	`type`	String	The type of application as defined by the event source, e.g., GitHub, Azure Logic App, or Amazon Elastic BeanStalk.
Application ID	`uid`	String	The unique identifier for the application.
Application Alternative ID	`uid_alt`	String	An alternative or contextual identifier for the application, such as a configuration, organization, or license UID.
Unmapped	`unmapped`	Unmapped[]	Data from the source that was not mapped into the schema.
URL	`url`	Uniform Resource Locator[]	Entity:`UNIFORM_RESOURCE_LOCATOR` The URL of the application.
Application Version	`version`	String	The semantic version of the application, e.g., 1.7.4.

Relationships

Inbound Relationships

These objects and events reference Application in their attributes:

Outbound Relationships

Application references the following objects and events in its attributes:

This page describes qdm-1.5.1+ocsf-1.6.0