Agentic AI Atlas

II.

LibraryProcess overview

lib-process:security-compliance--sast-pipeline

Reference · live

sast-pipeline overview

SAST Pipeline Integration - Automated static application security testing integration for CI/CD pipelines. Covers tool selection (SonarQube, Semgrep, Bandit, ESLint, etc.), CI/CD integration, security quality gates, vulnerability triage, false positive reduction, and continuous security monitoring.

LibraryProcessOutgoing · 7Incoming · 0

Attributes

displayName

sast-pipeline

description

libraryPath

library/specializations/security-compliance/sast-pipeline.js

specialization

security-compliance

references

- OWASP SAST: https://owasp.org/www-community/Source_Code_Analysis_Tools - SonarQube: https://www.sonarqube.org/ - Semgrep: https://semgrep.dev/ - Bandit: https://bandit.readthedocs.io/ - ESLint Security: https://github.com/nodesecurity/eslint-plugin-security - NIST SAST Guide: https://csrc.nist.gov/publications/detail/sp/500-268/final

example

const result = await orchestrate('specializations/security-compliance/sast-pipeline', { projectName: 'E-Commerce API', repositoryUrl: 'https://github.com/org/ecommerce-api', techStack: { language: 'JavaScript', framework: 'Node.js/Express', additionalLanguages: ['TypeScript', 'Python'] }, cicdPlatform: 'GitHub Actions', sastTools: ['SonarQube', 'Semgrep', 'ESLint Security'], qualityGates: { blockOnCritical: true, blockOnHigh: true, maxCritical: 0, maxHigh: 5, maxMedium: 20 }, severityThreshold: 'high', falsePositiveManagement: true, incrementalScanning: true, autoRemediation: false });

usesAgents

sast-configuration-engineer
cicd-security-engineer
security-quality-engineer
vulnerability-triage-agent
sast-tuning-specialist
security-reporting-specialist
remediation-guidance-agent
security-technical-writer
security-qa-engineer
security-lead

usesSkills

sast-analyzer

Outgoing edges

lib_applies_to_domain1

domain:security·DomainSecurity

lib_belongs_to_specialization1

specialization:security-compliance·Specialization

lib_implements_workflow2

workflow:release-management·Workflow
workflow:vulnerability-management·Workflow

uses_agent2

lib-agent:security-compliance--vulnerability-triage-agent·LibraryAgentvulnerability-triage-agent
lib-agent:security-compliance--remediation-guidance-agent·LibraryAgentremediation-guidance-agent

uses_skill1

lib-skill:security-compliance--sast-analyzer·LibrarySkillsast-analyzer

Incoming edges

None.

sast-pipeline overview

LibraryProcessOutgoing · 7Incoming · 0

Attributes

displayName

sast-pipeline

description

libraryPath

library/specializations/security-compliance/sast-pipeline.js

specialization

security-compliance

references

- OWASP SAST: https://owasp.org/www-community/Source_Code_Analysis_Tools - SonarQube: https://www.sonarqube.org/ - Semgrep: https://semgrep.dev/ - Bandit: https://bandit.readthedocs.io/ - ESLint Security: https://github.com/nodesecurity/eslint-plugin-security - NIST SAST Guide: https://csrc.nist.gov/publications/detail/sp/500-268/final

example

usesAgents

sast-configuration-engineer
cicd-security-engineer
security-quality-engineer
vulnerability-triage-agent
sast-tuning-specialist
security-reporting-specialist
remediation-guidance-agent
security-technical-writer
security-qa-engineer
security-lead

usesSkills

sast-analyzer

Outgoing edges

lib_applies_to_domain1

domain:security·DomainSecurity

lib_belongs_to_specialization1

specialization:security-compliance·Specialization

lib_implements_workflow2

workflow:release-management·Workflow
workflow:vulnerability-management·Workflow

uses_agent2

lib-agent:security-compliance--vulnerability-triage-agent·LibraryAgentvulnerability-triage-agent
lib-agent:security-compliance--remediation-guidance-agent·LibraryAgentremediation-guidance-agent

uses_skill1

lib-skill:security-compliance--sast-analyzer·LibrarySkillsast-analyzer

Incoming edges

None.