{"id":96466,"date":"2024-07-08T11:39:29","date_gmt":"2024-07-08T11:39:29","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?p=96466"},"modified":"2024-07-10T22:01:04","modified_gmt":"2024-07-10T22:01:04","slug":"why-cnapps-are-not-enough","status":"publish","type":"post","link":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/","title":{"rendered":"Why CNAPPs Are Not Enough\u00a0\u00a0"},"content":{"rendered":"<p>Cloud-native applications have revolutionized the way we develop, deploy, and manage software. With the adoption of cloud technologies, organizations are embracing Cloud-Native Application Protection Programs. At its core, they attempt to secure across cloud-native applications in runtime, leveraging tools like Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP), to detect, and remediate misconfigurations and security incidents in cloud environments.&nbsp;&nbsp;<\/p>\n\n\n\n<p>CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive <a href=\"https:\/\/checkmarx.com\/learn\/code-to-cloud-security\/cnapp-managing-cloud-native-application-security\/\">protection for cloud-native applications<\/a>. However, these platforms have built-in limitations that may leave organizations exposed to security risks and breaches &#8211; a fact that is not always emphasized.\u00a0<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-1\">\n<strong>1. Designed for the cloud\u2026only<\/strong>\u00a0<\/h2>\n\n\n\n<p>CNAPPs are tailored for cloud-native environments, often overlooking security needs in traditional on-premises environments. A cloud-only approach presents hurdles for organizations operating in both cloud and on-premises environments, due to lack of comprehensive coverage across diverse development landscapes. Without security measures for hybrid environments, organizations must either contend with heightened security risks and compliance issues or manage separate tools lacking integrated and correlated security insights.\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-2\">\n<strong>2. The focus is on runtime<\/strong>\u00a0<\/h2>\n\n\n\n<p>CNAPPs prioritize addressing threats and risks during the runtime phase. While they excel at identifying runtime threats, vulnerabilities introduced during the coding and testing phases of the Software Development Life Cycle (<a href=\"https:\/\/checkmarx.com\/learn\/appsec\/sdlc-guide\/\">SDLC<\/a>) may go unnoticed. This delayed increases the likelihood of security issues going unaddressed until they become critical problems in production, putting the business at risk for security breaches and data compromises.\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-3\">\n<strong>3. Infrastructure vs. Application Security<\/strong>\u00a0<\/h2>\n\n\n\n<p>By prioritizing the protection of cloud infrastructure, CNAPPs fall short by offering limited capabilities for identifying and mitigating vulnerabilities within the application code itself, making them an incomplete solution. Securing infrastructure is essential, but it must be complemented by robust application code security for comprehensive protection.\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-4\">\n<strong>4. Limited code-level visibility<\/strong>\u00a0<\/h2>\n\n\n\n<p>CNAPPs face a significant challenge detecting vulnerabilities at the code level due to their limited visibility into application code. Unlike more comprehensive <a href=\"https:\/\/checkmarx.com\">AppSec solutions<\/a> that can cover hybrid environments, CNAPPs often rely on third-party tools for code analysis. These tools are often not in-depth and can result in challenges when identifying and managing vulnerabilities. As a result, security teams have a tough time spotting risks in the application code or tying vulnerabilities in production to their location in code for developers to remediate.\u00a0<\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-5\">\n<br><strong>5. Incomplete API security coverage<\/strong>\u00a0<\/h2>\n\n\n\n<p>CNAPPs lack comprehensive coverage for API vulnerabilities. <a href=\"https:\/\/checkmarx.com\/product\/api-security\/\">API security<\/a> is vital for securing modern applications relying on APIs for communication. CNAPPs often develop their own API security features in-house, but these are seen as ad hoc at best. Due to their focus on runtime, they frequently miss crucial aspects of securing APIs.\u00a0\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-6\">\n<strong>6. No developer focus<\/strong>\u00a0<\/h2>\n\n\n\n<p>Developers were never part of the CNAPP plan. Their emphasis on infrastructure security has little developer involvement, which means CNAPP vendors are not focused on developers &#8211; their needs or integrating with their workflows and tooling.\u00a0 CNAPPs often fail to provide developer-friendly capabilities, impacting the developer experience and collaboration in software development.\u00a0\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-7\">\n<strong>7. Inadequate IDE integration<\/strong>\u00a0<\/h2>\n\n\n\n<p>Developers rely on <a href=\"https:\/\/checkmarx.com\/glossary\/integrated-development-environment-ide\/\">IDEs <\/a>for coding. However, if these IDEs are not integrated with, and able to, bring insights directly into the developer working environment, developers will not receive real-time feedback on security concerns, making it difficult to fix them quickly. Since CNAPPS integrate in at the runtime stage, there is a major delay in vulnerability discovery. This increases the chance of undiscovered vulnerabilities until runtime, potentially exposing applications to malicious actors.\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-8\">\n<strong>8. Limited remediation guidance<\/strong>\u00a0<\/h2>\n\n\n\n<p>Without clear guidance, prioritizing and resolving security risks becomes difficult. CNAPPs offer insufficient guidance for remedying identified vulnerabilities in code. Any remediation advice provided tends to lack specificity from a developer\u2019s perspective, making it hard for them to enact effective fixes.\u00a0\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-9\">\n<strong>9. Detection vs Prevention<\/strong>\u00a0<\/h2>\n\n\n\n<p><\/p>\n\n\n\n<p><br>CNAPPs primarily focus on monitoring and responding to security risks, rather than proactively preventing. This limitation hampers organization\u2019s ability to effectively prevent application-specific vulnerabilities and security challenges from going live. Without the ability to enforce preventive security policies and stop the build process at the coding stage, CNAPPs struggle to provide comprehensive protection against vulnerabilities in code making it to production.\u00a0\u00a0\u00a0<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>By integrating Checkmarx with a CNAPP solution, organizations can overcome the built-in limitations of CNAPPs. We offer advanced security tools to support the entire development life cycle for hybrid cloud environment. This integration enhances developer workflows by delivering real-time security feedback during coding, enabling early detection and remediation of vulnerabilities. With our proactive security approach, vulnerabilities are addressed throughout the software development lifecycle, correlating runtime insights from CNAPPs for better risk prioritization and reducing alert noise by up to 90%. By enforcing customizable security policies and mitigating API-related threats, we bridge the gap between cloud infrastructure security and application security, providing a comprehensive solution for securing cloud-native applications.&nbsp;<\/p>","protected":false},"excerpt":{"rendered":"<p>Cloud-native applications have revolutionized the way we develop, deploy, and manage software. With the adoption of cloud technologies, organizations are embracing Cloud-Native Application Protection Programs. At its core, they attempt to secure across cloud-native applications in runtime, leveraging tools like Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP), to detect, and remediate [&hellip;]<\/p>\n","protected":false},"author":94,"featured_media":96467,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[84],"tags":[87,847,484,190,403],"class_list":["post-96466","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","tag-appsec","tag-cnapp","tag-code-to-cloud","tag-english","tag-leadership"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Why CNAPPs Are Not Enough<\/title>\n<meta name=\"description\" content=\"CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive protection for cloud-native applications. However...\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Why CNAPPs Are Not Enough\" \/>\n<meta property=\"og:description\" content=\"CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive protection for cloud-native applications. However...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:published_time\" content=\"2024-07-08T11:39:29+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-07-10T22:01:04+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1355\" \/>\n\t<meta property=\"og:image:height\" content=\"678\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Sagy Kratu\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sagy Kratu\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\"},\"author\":{\"name\":\"Sagy Kratu\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/59afb6ca8aa5a87ace0efd827b3e3e24\"},\"headline\":\"Why CNAPPs Are Not Enough\u00a0\u00a0\",\"datePublished\":\"2024-07-08T11:39:29+00:00\",\"dateModified\":\"2024-07-10T22:01:04+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\"},\"wordCount\":788,\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png\",\"keywords\":[\"AppSec\",\"cnapp\",\"code to cloud\",\"English\",\"Leadership\"],\"articleSection\":[\"Blog\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\",\"url\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\",\"name\":\"Why CNAPPs Are Not Enough\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png\",\"datePublished\":\"2024-07-08T11:39:29+00:00\",\"dateModified\":\"2024-07-10T22:01:04+00:00\",\"description\":\"CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive protection for cloud-native applications. However...\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png\",\"width\":1355,\"height\":678,\"caption\":\"CNAP best practices Cover\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/59afb6ca8aa5a87ace0efd827b3e3e24\",\"name\":\"Sagy Kratu\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_94.png\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_94.png\",\"caption\":\"Sagy Kratu\"},\"url\":\"https:\/\/checkmarx.com\/author\/sagykratu\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Why CNAPPs Are Not Enough","description":"CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive protection for cloud-native applications. However...","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/","og_locale":"en_US","og_type":"article","og_title":"Why CNAPPs Are Not Enough","og_description":"CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive protection for cloud-native applications. However...","og_url":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_published_time":"2024-07-08T11:39:29+00:00","article_modified_time":"2024-07-10T22:01:04+00:00","og_image":[{"width":1355,"height":678,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png","type":"image\/png"}],"author":"Sagy Kratu","twitter_card":"summary_large_image","twitter_creator":"@checkmarx","twitter_site":"@checkmarx","twitter_misc":{"Written by":"Sagy Kratu","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#article","isPartOf":{"@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/"},"author":{"name":"Sagy Kratu","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/59afb6ca8aa5a87ace0efd827b3e3e24"},"headline":"Why CNAPPs Are Not Enough\u00a0\u00a0","datePublished":"2024-07-08T11:39:29+00:00","dateModified":"2024-07-10T22:01:04+00:00","mainEntityOfPage":{"@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/"},"wordCount":788,"publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"image":{"@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png","keywords":["AppSec","cnapp","code to cloud","English","Leadership"],"articleSection":["Blog"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/","url":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/","name":"Why CNAPPs Are Not Enough","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png","datePublished":"2024-07-08T11:39:29+00:00","dateModified":"2024-07-10T22:01:04+00:00","description":"CNAPPs are often presented as the go-to tool for cloud security, promising comprehensive protection for cloud-native applications. However...","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/blog\/why-cnapps-are-not-enough\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/why_cnapp_not_enough.png","width":1355,"height":678,"caption":"CNAP best practices Cover"},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]},{"@type":"Person","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/59afb6ca8aa5a87ace0efd827b3e3e24","name":"Sagy Kratu","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_94.png","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_94.png","caption":"Sagy Kratu"},"url":"https:\/\/checkmarx.com\/author\/sagykratu\/"}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts\/96466","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/94"}],"replies":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/comments?post=96466"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts\/96466\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/96467"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=96466"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/categories?post=96466"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/tags?post=96466"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}