Mobb User Docs
Start NowBlogsWatch NowContact Us
  • What is Mobb?
  • What's New with Mobb
  • Supported Fixes
  • Getting Started
    • System Requirements
    • Onboarding Guide
      • Registering a Mobb account
      • Try Mobb now!
      • Running Mobb against your own code
      • Automate Mobb in a CI/CD pipeline
    • Working with the Fix Report
    • Mobb CLI Overview
      • Analyze Mode
      • Scan Mode
      • Add SCM Token Mode
      • Review Mode
      • Common Deployment Scenarios
  • Mobb Dashboard
  • Integrating SAST Findings
    • Checkmarx
      • Generating Checkmarx One JSON Report from CLI
    • Snyk
    • SonarQube
      • Generating a SonarQube SAST Report
    • Fortify
    • CodeQL
    • Semgrep/Opengrep
      • Generating a Semgrep SAST Report
      • Generating an Opengrep SAST Report
  • CI/CD Integrations
    • GitHub Actions
      • GitHub Fixer for CxOne
      • GitHub Fixer for Opengrep
    • GitLab Pipeline
    • Azure DevOps
    • Jenkins
    • CircleCI
    • Bamboo
    • Bitbucket Pipeline
  • Administration
    • User Management
    • Project Settings
    • Access Tokens
    • Organization-Level Fix Policy
    • Integrations Page
    • SAML Single Sign-On Flow
  • More Info
    • Mobb Broker
      • Mobb Broker Token Rotation
      • Secure storage of Mobb broker in AWS Secrets Manager
    • Providing Fix Feedback
    • Frequently Asked Questions (FAQ)
    • Data Protection and Retention
    • Service Level Agreement
  • Fixing Guides
    • SQL Injection
    • Path Traversal
    • Log Forging
    • XSS
    • XXE
    • Server Side Request Forgery
    • HttpOnly Cookie Vulnerabilities
    • Hardcoded Domain in HTML
    • Hardcoded Secrets
    • HTTP Response Splitting Attacks
    • Insecure Cookie Vulnerabilities
    • Insecure Randomness
    • Missing Check against Null
    • Missing Rate Limiting
    • Regex Missing Timeout
    • System Information Leakage
  • Mobb REST API Guide
Powered by GitBook
On this page
  • Supported SAST tools
  • Supported programming languages
  • Supported Source Code Management (SCM) tools
  • Cloud SCMs
  • On-premise SCMs
  • Bugsy (Mobb CLI)

Was this helpful?

  1. Getting Started

System Requirements

PreviousGetting StartedNextOnboarding Guide

Last updated 3 months ago

Was this helpful?

Supported SAST tools

Mobb generates the auto-fix analysis by consuming a SAST scan report from one of the supported SAST tools:

  • Checkmarx

  • Fortify

  • Snyk

  • CodeQL (GitHub Advanced Security)

  • SonarQube

  • Semgrep/Opengrep

Supported programming languages

The following are the currently supported programming languages by Mobb:

  • Java

  • JavaScript and TypeScript

  • C#

  • Python

to see more details on the specific issue types that Mobb currently supports.

Supported Source Code Management (SCM) tools

Mobb provides the ability to automatically commit fixed code back to your Source Code Management tools. Here are the SCM tools that Mobb currently supports.

Cloud SCMs

  • GitHub Cloud

  • GitLab Cloud

  • Azure Repo Cloud

  • Bitbucket Cloud

If your SCM is not listed here, Mobb also provides you with the ability to download the fixed code via a .diff file which you can apply manually to your Git repository.

On-premise SCMs

  • GitHub Enterprise

  • GitLab On-Premise

  • Azure DevOps Server

Bugsy (Mobb CLI)

  • Node.js Version: Node.js version 18.18.0 or higher.

  • Compatibility: Bugsy is designed to run in diverse environments, including docker containers, CI/CD pipelines, and bare-metal setups.

The community edition version of Mobb, or what we called , is a command-line interface (CLI) tool that provides automatic security vulnerability remediation for your code. Bugsy requires the following pre-requisite to run in your environment:

Click here
Bugsy