Generate SAST remediation guidance with Polaris Assist (Beta)

Use Polaris Assist to generate remediation guidance (including an issue summary, code analysis, and fix suggestion) for a SAST issue with a large language model (LLM).

Overview

When you run Polaris Assist, it formulates prompts using:

The issue's Common Weakness Enumeration (CWE) identifier
The issue's description
The line number on which the issue was found
A code snippet that includes the issue (approximately 10 lines of code)

... that are sent to a private LLM service to generate remediation guidance that appears in Polaris, including:

Issue Summary: A short description of the issue.
Code Analysis: An analysis of the code in which the issue is identified.
Fix Suggestion: A revision (in code) that may remediate the issue.

Note: The guidance Polaris Assist generates is not preserved or shared with other users in your organization. If you navigate to a different page or sign out of Polaris, the remediation guidance you generated previously is discarded.

Polaris Assist is compatible with SAST issues (and all the languages in the SAST Language Support table).

Data privacy

Polaris Assist communicates with a LLM that runs on a private cloud service. Please note:

None of the prompts or responses exchanged between Polaris Assist and the LLM are used to:
- Train or improve the LLM.
- Improve the LLM provider's other products or services.
Polaris Assist does not retain source code used in prompts.
User-submitted feedback on responses is not sent to the LLM.
Each response from Polaris Assist is only shared with the user who requests it.
Data exchanged between Polaris Assist and the LLM is encrypted for storage and transmission.

Accuracy and completeness

Warning: Polaris Assist generates results created by artificial intelligence (AI) or other automated technologies. Such results are provided for informational purposes only and should not be relied upon for any specific purpose without verification of its accuracy or completeness.

Enable Polaris Assist

Polaris Assist is disabled by default and can only be enabled by an Organization Administrator. To enable Polaris Assist, follow these steps:

Go to My Organization > General.
Select Enable Polaris Assist.

Use Polaris Assist

To use Polaris Assist, follow these steps:

Go to Portfolio, open an application, and open a SAST & SCA project.
Select a SAST issue.
The Issue Details panel appears.
Select AI Insight powered by Polaris Assist.

The Contributing Code Events panel opens, and Polaris generates an Issue Summary, Code Analysis, and Fix Suggestion that you may be able to use to remediate the issue.

Warning: Polaris Assist generates results created by AI or other automated technologies. Such results are provided for informational purposes only and should not be relied upon for any specific purpose without verification of its accuracy or completeness.

Select Copy to copy an Issue Summary, Code Analysis, or Fix Suggestion to your clipboard.
(Optional) Use the feedback buttons to submit positive () or negative () feedback.

Tip: To run Polaris Assist again (and generate new remediation guidance), refresh the page and repeat these steps.