application
Represents an application with comprehensive metadata including security metrics, repository information, and operational characteristics.
Examples
type Application {
id: String
appId: String
repoName: String
appName: String
branch: String
branchesCount: Int
branchesToScan: [String]
businessPriority: Float
codeChanges: Int
commitCount: Int
createdAt: String
creator: String
daysSinceLastCodeChange: Int
daysSinceRepoCreation: Int
deployedProd: Boolean
filesCount: Int
forksCount: Int
hasDownloads: Boolean
headSha: String
irrelevantReasons: [String]
languages: [Language]
lastCodeChange: String
new: Boolean
overrideRelevance: String
overridePriority: Int
originalBusinessPriority: Float
publicVisibility: Boolean
pullCount: Int
pushCount: Int
relevant: Boolean
risk: Float
scanId: String
scannedAt: Float
secInfrastructure: [ServerSecurityInfraItem]
securityPosture: Float
size: Float
tagsCount: Int
type: String
updated: Boolean
userCount: Int
version: String
violationCount: Int
watchersCount: Int
yamlsCount: Int
scoreHistory: [ScoreHistoryItem]
applicationFlows: ApplicationFlow
isSbomPresent: Boolean
appOwners: [OwnerInfo]
offset: Int
improvement: Float
fakeApp: Boolean
link: String
branchLink: String
issues: Int
categories: [AppCategories]
toolsCoverage: [AppToolCoverage]
pipeline: Pipeline
isPipelineConfigured: String
organization: String
repoRealName: String
repoId: String
pipelineScans: Int
issuesBySeverity: Severities
pkgManagers: [String]
sbomCount: Int
isMonoRepoChild: Boolean
monoRepoParent: String
monorepoChildrenCount: Int
monorepoChildrenAppIds: [String]
tags: [AppTag]
dockerfiles: [Dockerfile]
severityChangedReason: [ApplicationSeverityChangedReason]
apiInventoriesTotal: Int
credentialsId: String
oxInPipeline: String
oxInPipelineDescription: String
primaryAppReason: String
primaryApp: Boolean
matchedProjects: [MatchedProjects]
toolName: String
}Fields
id String ⚠️
Deprecated: Use appId instead
appId String
Application-specific identifier
repoName String
Name of the associated repository
appName String
Display name of the application
branch String
Default branch for development
branchesCount Int
Total number of branches in the repository
branchesToScan [String]
List of repository branches configured for scanning
businessPriority Float
Business priority score assigned to the application
codeChanges Int
Number of code changes recorded
commitCount Int
Total number of commits in the repository
createdAt String
Timestamp of application creation
creator String
User who created the application
daysSinceLastCodeChange Int
Number of days since the last code modification
daysSinceRepoCreation Int
Age of the repository in days
deployedProd Boolean
Indicates if the application is deployed in production
filesCount Int
Total number of files in the repository
forksCount Int
Number of repository forks
hasDownloads Boolean
Indicates if downloads are enabled for the repository
headSha String
SHA hash of the latest commit
irrelevantReasons [String]
List of reasons why the application is marked irrelevant
languages [Language]
Programming languages used in the application
language String
languagePercentage Float
lastCodeChange String
Timestamp of the most recent code change
new Boolean
Indicates if this is a newly added application
overrideRelevance String
Manual override status for application relevance
overridePriority Int
Manual override value for priority
originalBusinessPriority Float
Original business priority score calculated by the system
publicVisibility Boolean
Indicates if the repository is publicly accessible
pullCount Int
Number of pull requests
pushCount Int
Number of push events
relevant Boolean
Indicates if the application is considered relevant
risk Float
Security risk score
scanId String
Identifier of the latest scan
scannedAt Float
Timestamp of the last scan
secInfrastructure [ServerSecurityInfraItem]
Security infrastructure components
label String
clientCoverage Float
oxCoverage Float
noCoverage Float
notApplicable Float
securityPosture Float
Overall security posture score
size Float
Repository size in bytes
tagsCount Int ⚠️
Deprecated: Use tags instead
type String
Application Git vendor
updated Boolean
Indicates if the application details were recently updated
userCount Int
Number of unique users interacting with the application
version String
Application version identifier
violationCount Int
Number of security violations detected
watchersCount Int
Number of repository watchers
yamlsCount Int
Number of YAML configuration files
scoreHistory [ScoreHistoryItem]
Historical risk score data points
appId String
appName String
score Float
date Float
new Boolean
updated Boolean
scanId String
applicationFlows ApplicationFlow
Application flow and dependency information
artifacts [ArtifactItem]
cloudDeployments [CloudDeployment]
cicdInfo [CicdInfo]
orchestrators [OrchestratorItem]
kubernetes [KubernetesItem]
repository [RepositoryItem]
isSbomPresent Boolean ⚠️
Deprecated: This field is not used anymore
appOwners [OwnerInfo]
List of application owners and their roles
name String
email String
roles [AppOwnerRole]
offset Int ⚠️
Deprecated: This field is not used anymore
improvement Float ⚠️
Deprecated: This field is not used anymore
fakeApp Boolean
Indicates if this is a real repository
link String
URL to the repository
branchLink String
URL to the specific branch
issues Int
Total number of security issues
categories [AppCategories]
Application categories and classifications
categoryName String
categoryId String
catId Int
severities AppSeverities
score Float
severityScore String
total Float
isNa Boolean
reason [String]
toolsCoverage [AppToolCoverage]
Security tools coverage information
toolName String
oxDelivered Boolean
coverage Boolean
type String
sources [ToolCoverageSources]
pipeline Pipeline
Latest pipeline scan information
jobId String
jobTriggeredAt Float
scanResult PipelineScanResult
issuesCount Int
jobTriggeredBy String
jobUrl String
isPipelineConfigured String ⚠️
Deprecated: Use oxInPipeline instead
organization String
Organization owning the repository
repoRealName String ⚠️
Deprecated: This field is not used anymore
repoId String ⚠️
Deprecated: Use appId instead
pipelineScans Int
Number of pipeline scan executions
issuesBySeverity Severities
Breakdown of issues by severity level
info Int
low Int
medium Int
high Int
critical Int
appox Int
pkgManagers [String]
Package managers used in the application
sbomCount Int
Number of associated SBOMs
isMonoRepoChild Boolean
Indicates if this is a child application in a monorepo
monoRepoParent String
Parent application identifier in a monorepo
monorepoChildrenCount Int
Number of child applications in the monorepo
monorepoChildrenAppIds [String]
List of child application identifiers
tags [AppTag]
Application tags
tagId String
name String
email String
displayName String
tagType OxTagType
createdBy String
purpose String
deploymentModel String
severityChangedReason [ApplicationSeverityChangedReason]
Reasons for severity level changes
tagId String
changeNumber Float
shouldBeSeverityFactor Boolean
requiredHits Int
reason String
shortName String
changeCategory String
changePlusReasonFacet String
extraInfo [ApplicationExtraInfo]
apiInventoriesTotal Int
Total number of API inventories
credentialsId String
Associated credentials identifier
oxInPipeline String
Integration status with Ox in the pipeline
oxInPipelineDescription String
Description of Ox pipeline integration
primaryAppReason String
Reason for primary application designation
primaryApp Boolean
Indicates if this is a primary application
matchedProjects [MatchedProjects]
List of matched projects
toolName String
matchedProjects [MatchedProject]
toolName String
third party tool name
References
Queries using this object:
Fields with this object:
Last updated