&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=12271485.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 12,271,485 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Detecting vulnerabilities in virtual instances in a cloud environment utilizing infrastructure as code</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Roy Reznik,  Tel Aviv (IL);  Yinon Costica,  Tel Aviv (IL);  Osher Hazan,  Mazkeret Batia (IL); and  Raaz Herzberg,  Tel Aviv (IL)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Wiz, Inc.,  New York, NY (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Wiz, Inc.,  New York, NY (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Aug.  17, 2022, as Appl. No. 17/820,433.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 63/239,190, filed on Aug.  31, 2021.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2023/0069334 A1, Mar.  2, 2023</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>G06F 21/56</b></i> (2013.01); <i><b>G06F 21/57</b></i> (2013.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>G06F 21/577</b></i> (2013.01)&#xa0;[<i><b>G06F 21/568</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>17 Claims</b></td>
          </tr>
        </table>
        <center><img src="US12271485-20250408-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A method for detecting a vulnerable workload deployed in a cloud computing environment based on a code object of an infrastructure as code (IaC) file utilizing a security graph, comprising:<div class="claim_text">extracting a code object, of a deployment code, from a state file, the state file including a mapping between the code object to a first workload deployed in the cloud computing environment and a second workload deployed in the cloud computing environment;</div>
                <div class="claim_text">generating a node representing the code object in the security graph, wherein the security graph includes a representation of the cloud computing environment;</div>
                <div class="claim_text">generating a connection in the security graph between the node representing the code object and a node representing the first workload;</div>
                <div class="claim_text">generating a connection in the security graph between the node representing the code object and a node representing the second workload;</div>
                <div class="claim_text">inspecting the first workload to detect a cybersecurity threat;</div>
                <div class="claim_text">generating a node representing the cybersecurity threat in the security graph;</div>
                <div class="claim_text">generating a connection in the security graph between the node representing the cybersecurity threat and the node representing the first workload; and</div>
                <div class="claim_text">determining that the second workload is a vulnerable workload which includes the cybersecurity threat, in response to detecting that the first workload node is associated with the cybersecurity threat, and that the node representing the second workload and the node representing the first workload are each connected to the node representing the code object.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>