After you integrate a source code management tool or a CI build system with Aqua, you can add code repositories hosted on them. When code repositories are added, Aqua will scan and detect the security issues in them: vulnerabilities, sensitive data, security issues detected by SAST (Static Application Security Testing) checks, and IaC misconfigurations. After you integrate with a CI build system with Aqua, all pipelines in the build system are discovered and misconfigurations in the pipelines are detected.


Navigate to the Risks screen to see the security issues detected in all the code repositories and build pipelines. These security issues align with those displayed in the detailed views of each code repository and build pipeline.


For complete information, visit Risks in Code Repositories in the Aqua Platform Documentation Portal.