Checkmarx Launches Infrastructure as Code Scanning Solution to Secure Cloud-Native Applications: KICS

Application Security Glossary

Vulnerability Scan of Software Code

The term Vulnerability Scan refers to an automated process of identifying security vulnerabilities in a network’s computing systems. The purpose of the scan is to determine whether a system or a program can be exploited or threatened. While servers are essential for communication and data transfer over the net, they are vulnerable to potential security breaches that are executed by threat agents such as viruses sent by malicious hackers.


Vulnerability scanning

Any company that has a web presence faces threats on a daily basis. A well-prepared and executed security plan can prevent these attacks, but as new threats and vulnerabilities are found on a daily basis, it is critical that companies keep the most up-to-date security and vulnerability database. It is also critical that all newly-developed or newly-added applications are scanned for vulnerabilities as these applications could potentially allow a malicious attacker to gain unauthorized access to the network. This could put sensitive company information, financial records, company assets, and confidential client, customer and employee information at risk.



A workload is the computational or transactional burden of a set of computing, networking, and storage tasks associated with an application. Similar apps with the same technology and tools can have radically different workloads under different circumstances or during different times. Workloads can often be measured by CPU or memory consumption, network traffic, requests, database queries, transactions, and so forth. In very basic, broad terms, an application is a thing that processes something; a workload is the processing that’s being done; and a use case is the reason that you do it. In the context of cloud computing and Kubernetes clusters, a workload can be seen as the amount of work that an instance of an app or part of an app performs during a certain time period.


YAML (a recursive acronym for “YAML Ain’t Markup Language”) is a human-readable data-serialization language. It is commonly used for configuration files and in applications where data is being stored or transmitted.