	US 12,292,982 B2
	System, method, and process for detecting risks across application and infrastructure code
Idan Plotnik, Herzliya (IL); Yonatan Eldar, Tel Aviv (IL); Eli Shalom, Tel Aviv-Jaffa (IL); and Ariel Levy, Haifa (IL)
Assigned to APIIRO LTD., Tel Aviv (IL)
Filed by APIIRO LTD., Tel Aviv (IL)
Filed on Oct. 27, 2022, as Appl. No. 17/974,670.
Claims priority of provisional application 63/272,696, filed on Oct. 28, 2021.
Prior Publication US 2023/0132503 A1, May 4, 2023
Int. Cl. G06F 21/57 (2013.01)

CPC G06F 21/577 (2013.01) [G06F 2221/033 (2013.01)]

6 Claims

1. A method for unifying risks and remediations associated with entities in application and infrastructure code, comprising the steps of:

defining governance rules;

fetching data from more than one source;

extracting features from the data;

formalizing sub-entities from the extracted features, the formalized sub-entities representing the extracted features in a formal and unified manner;

providing a plurality of entities from the formalized sub-entities, matching and unifying sub-entities having common extracted features into single entities of the plurality of entities;

aggregating risks and remediations of each of the same sub-entities and assigning the aggregated risks and remediations to the corresponding single entity; and

computing risk priority of the aggregated risks and triggering workflows that are based on the aggregated remediations and applied to the sub-entities that were matched and unified, the workflows to be ordered according to the risk priority and in keeping with the governance rules.