# Checkmarx

{% hint style="warning" %}
**Early Access** — Reach out to your Natoma representative for access.
{% endhint %}

**Type:** Official

**Source Type:** Remote URL

**Source:** `https://{checkmarxBaseUrl}/api/security-mcp/mcp`

**Description:** Checkmarx One MCP server provides AI assistants with access to your Checkmarx One application security platform. It enables querying scans, projects, vulnerabilities, and findings to support AppSec triage and reporting.

**Configuration Parameters:**

* **Checkmarx Base URL** \* - Admin-supplied. Your Checkmarx One host (e.g. `ast.checkmarx.net`, `eu.ast.checkmarx.net`).
* **Checkmarx One API Key** \* (sensitive) - Your personal Checkmarx One API key — generated in Checkmarx One.

## Setup

### Admin Setup

In Natoma, an admin adds **Checkmarx** under **Apps** and sets the **Checkmarx Base URL** for the org.

### User Setup

1. Log in to Checkmarx One.
2. Navigate to **Settings → Identity & Access Management → API Keys**.
3. Click **Create API Key** and scope it to the permissions you need.
4. Copy the generated key — Checkmarx will not show it again.
5. When creating the connection in Natoma, paste the API key and save.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.natoma.ai/apps/checkmarx.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.