StackHawk Documentation StackHawk Logo HawkDocs
api
scan policies
update app tech flags

No results found

Try different keywords or check your spelling

Search documentation

Find guides, API references, and more

esc

Update application tech flags

PUT /api/v1/app/{appId}/policy/flags

Update Tech Flags

Updates the technology flags for this application.

Adjusting these tech flags alters the behavior of plugins by either conditionally executing or operating differently based on the enabled flags. Optimizing tech flags by excluding unused technologies can speed up scans and reduce false positives.

Additional Information:

  • The techFlags map provided must contain keys that exactly match the accepted technology flags. Use the Get application tech flags endpoint to read the current configuration for an application.
  • The default value for all flags is true. Setting a flag to false will disable or alter the behavior of related plugins.

Accepted Technology Flags:

Technology Flags
Db
Db.MySQL
Db.PostgreSQL
Db.Microsoft SQL Server
Db.Oracle
Db.SQLite
Db.Microsoft Access
Db.Firebird
Db.SAP MaxDB
Db.Sybase
Db.IBM DB2
Db.HypersonicSQL
Db.MongoDB
Db.CouchDB
Language
Language.ASP
Language.C
Language.Java
Language.Java.Spring
Language.JavaScript
Language.JSP/Servlet
Language.PHP
Language.Python
Language.Ruby
Language.XML
OS
OS.Linux
OS.MacOS
OS.Windows
SCM
SCM.Git
SCM.SVN
WS
WS.Apache
WS.IIS

🧾 Audited This is recorded as TECH_FLAG_MODIFIED User Activity.

Requires write:application permission.

Path parameters

appIdstring · uuidrequired

UUID identifier for this StackHawk Application.

Body

object

Response

OK

scanPolicy
scanpolicy.ScanPolicy
Hide child attributesShow child attributes
scanPolicy.applicationId
string read-only

The UUID identifier of the scan policy application. If no application ID is present, the scan policy is defined by StackHawk. If the application ID is present, then the scan policy is customized for the given application only.

scanPolicy.description
string

The description for this policy.

scanPolicy.displayName
string

The human readable display name for this policy.

scanPolicy.id
string read-only

The UUID identifier of this scan policy.

scanPolicy.isCustomized
boolean

Indicates whether the plugins have been updated from original scan policy.

scanPolicy.name
string

The referencable unique name of a StackHawk scan policy.

scanPolicy.plugins
scanpolicy.Plugin[]

List of the plugins defined for this policy.

Hide child attributesShow child attributes
scanPolicy.plugins.defaultRisk
enum<string> read-only

Default risk for this plugin. Currently unused.

5 available options
UNKNOWNINFOLOWMEDIUMHIGH
scanPolicy.plugins.enabled
boolean

Enables the plugin. Plugins will only run in a scan when marked as enabled.

scanPolicy.plugins.name
string

The Plugin name.

scanPolicy.plugins.pluginId
string

The UUID identifier of this plugin.

scanPolicy.plugins.pluginType
enum<string>

The type of plugin to run as. Either ACTIVE or PASSIVE.

2 available options
ACTIVEPASSIVE
scanPolicy.plugins.status
enum<string> read-only

The release quality of this plugin.

3 available options
ADDON_STATUS_ALPHAADDON_STATUS_BETAADDON_STATUS_RELEASE
scanPolicy.plugins.strength
enum<string> write-only

The strength of this plugin. Currently unused.

5 available options
STRENGTH_LOWSTRENGTH_MEDIUMSTRENGTH_HIGHSTRENGTH_INSANESTRENGTH_OFF
scanPolicy.plugins.threshold
enum<string> write-only

The threshold of this plugin. Currently unused.

4 available options
THRESHOLD_LOWTHRESHOLD_MEDIUMTHRESHOLD_HIGHTHRESHOLD_OFF
scanPolicy.techFlags
object read-only

Technology flags for this policy. This is a collection of specific technology identifiers that further configure scan behavior.

scanPolicy
scanpolicy.ScanPolicy
Hide child attributesShow child attributes
scanPolicy.applicationId
string read-only

The UUID identifier of the scan policy application. If no application ID is present, the scan policy is defined by StackHawk. If the application ID is present, then the scan policy is customized for the given application only.

scanPolicy.description
string

The description for this policy.

scanPolicy.displayName
string

The human readable display name for this policy.

scanPolicy.id
string read-only

The UUID identifier of this scan policy.

scanPolicy.isCustomized
boolean

Indicates whether the plugins have been updated from original scan policy.

scanPolicy.name
string

The referencable unique name of a StackHawk scan policy.

scanPolicy.plugins
scanpolicy.Plugin[]

List of the plugins defined for this policy.

Hide child attributesShow child attributes
scanPolicy.plugins.defaultRisk
enum<string> read-only

Default risk for this plugin. Currently unused.

5 available options
UNKNOWNINFOLOWMEDIUMHIGH
scanPolicy.plugins.enabled
boolean

Enables the plugin. Plugins will only run in a scan when marked as enabled.

scanPolicy.plugins.name
string

The Plugin name.

scanPolicy.plugins.pluginId
string

The UUID identifier of this plugin.

scanPolicy.plugins.pluginType
enum<string>

The type of plugin to run as. Either ACTIVE or PASSIVE.

2 available options
ACTIVEPASSIVE
scanPolicy.plugins.status
enum<string> read-only

The release quality of this plugin.

3 available options
ADDON_STATUS_ALPHAADDON_STATUS_BETAADDON_STATUS_RELEASE
scanPolicy.plugins.strength
enum<string> write-only

The strength of this plugin. Currently unused.

5 available options
STRENGTH_LOWSTRENGTH_MEDIUMSTRENGTH_HIGHSTRENGTH_INSANESTRENGTH_OFF
scanPolicy.plugins.threshold
enum<string> write-only

The threshold of this plugin. Currently unused.

4 available options
THRESHOLD_LOWTHRESHOLD_MEDIUMTHRESHOLD_HIGHTHRESHOLD_OFF
scanPolicy.techFlags
object read-only

Technology flags for this policy. This is a collection of specific technology identifiers that further configure scan behavior.

Bad Request

Unauthorized

Your privacy settings

We use first and third party cookies to ensure that we give you the best experience on our website and in our products.

Privacy Policy