Application

application

An Application describes the details for an inventoried application as reported by an Application Security tool or other Developer-centric tooling. Applications can be defined as Kubernetes resources, Containerized resources, or application hosting-specific cloud sources such as AWS Elastic BeanStalk, AWS Lightsail, or Azure Logic Apps.

Attributes

CaptionNameTypeDescription
Business CriticalitycriticalityStringThe criticality of the application as defined by the event source.
DatadataJSONAdditional data describing the application.
Application DescriptiondescStringA description or commentary for an application, usually retrieved from an upstream system.
GroupgroupGroup[]The name of the related application or associated resource group.
HostnamehostnameHostnameEntity:HOSTNAME

The fully qualified name of the application.
LabelslabelsString[]The list of labels associated to the application.
Application NamenameStringThe name of the application.
OwnerownerUser[]Entity:USER

The identity of the service or user account that owns the application.
Raw Dataraw_dataJSONGroup:context

The event data as received from the event source.
Record IDrecord_idStringGroup:primary

Unique identifier for the object
RegionregionStringThe cloud region of the resource.
Application Relationshipresource_relationshipGraph[]A graph representation showing how this application relates to and interacts with other entities in the environment. This can include parent/child relationships, dependencies, or other connections.
Risk Levelrisk_levelStringThe risk level, normalized to the caption of the risk_level_id value.
Risk Level IDrisk_level_idIntegerThe normalized risk level id.
  • 0: Info (INFO)
  • 1: Low (LOW)
  • 2: Medium (MEDIUM)
  • 3: High (HIGH)
  • 4: Critical (CRITICAL)
  • 99: Other (OTHER)
Risk Scorerisk_scoreIntegerThe risk score as reported by the event source.
Related SBOMsbomSoftware Bill of Materials[]The Software Bill of Materials (SBOM) associated with the application
TagstagsKey:Value object[]The list of tags; key:value pairs associated to the application.
Application TypetypeStringThe type of application as defined by the event source, e.g., GitHub, Azure Logic App, or Amazon Elastic BeanStalk.
Application IDuidStringThe unique identifier for the application.
Application Alternative IDuid_altStringAn alternative or contextual identifier for the application, such as a configuration, organization, or license UID.
UnmappedunmappedUnmapped[]Data from the source that was not mapped into the schema.
URLurlUniform Resource Locator[]Entity:UNIFORM_RESOURCE_LOCATOR

The URL of the application.
Application VersionversionStringThe semantic version of the application, e.g., 1.7.4.

Relationships

Application shown in context

Inbound Relationships

These objects and events reference Application in their attributes:

Outbound Relationships

Application references the following objects and events in its attributes:

This page describes qdm-1.5.1+ocsf-1.6.0