Bright Integration

Bright Security Integration

Overview

The Jit-Bright Security integration empowers you to strengthen your application security by seamlessly importing Bright's DAST findings into your security workflows.

By combining Bright Security's comprehensive dynamic application security testing with Jit's security automation, you can prioritize vulnerabilities based on real-time risk context and ensure your most critical web applications remain protected.

Integration Capabilities

  • Comprehensive DAST Visibility: Import Bright Security's findings from your web applications directly into Jit
  • Risk-Based Prioritization: Leverage Bright's risk scoring to prioritize security issues based on their actual impact
  • Streamlined Security Workflows: Address web application security issues alongside your other security findings in one unified platform
  • Context Enrichment: Enrich Jit's context graph with Bright Security's findings for better issue prioritization

Integration Setup

Prerequisites

  • An active Bright Security account
  • The necessary permissions to create API keys in Bright
  • A Jit account with administrative privileges

Quickstart

  1. In Jit's web app, navigate to the Integrations page
  1. Find the "Bright" card and click "Connect"
  2. You will be prompted to provide your Bright Security API Key

To generate an API key in Bright Security:

  • Navigate to the User Settings page

  • Create a new API key with the following scopes:

    • issues.read
    • org.read
    • projects.read
    • scans.read
    • user.read

    ℹ️

    For detailed instructions, refer to the Bright documentation

  1. After submitting your credentials, the integration will be complete. Jit will start pulling findings from Bright periodically and enriching its context graph with this data.

Troubleshooting

If you encounter issues with the integration:

  1. Verify your API key has the correct permissions in Bright Security
  2. Check your network configuration to ensure Jit can reach the Bright Security API endpoints
  3. Confirm that DAST scans are configured and running in your Bright account
  4. Contact Jit support if issues persist