> ## Documentation Index
> Fetch the complete documentation index at: https://docs.pwnbook.app/llms.txt
> Use this file to discover all available pages before exploring further.

# Corgea

> Pull AI-assisted SAST findings from Corgea into Pwnbook.

<img src="https://mintcdn.com/pwnbook/noJyYhCscAD7TYUE/logos/corgea.png?fit=max&auto=format&n=noJyYhCscAD7TYUE&q=85&s=1075162d5d8c295c42138c448e24f3df" alt="Corgea" style={{ height: "32px", marginBottom: "16px" }} width="128" height="133" data-path="logos/corgea.png" />

## Overview

Corgea is a SAST platform that pairs code vulnerability detection with AI-generated fix suggestions. The Pwnbook integration pulls open findings from Corgea, including which ones have auto-fixes ready, so your team can triage and remediate without switching tools.

## Prerequisites

* A Corgea account
* A Corgea API token
* Admin or Owner access in Pwnbook

## Setup

<Steps>
  <Step title="Generate a Corgea API token">
    1. Log in to your Corgea dashboard.
    2. Go to **Settings → API Tokens**.
    3. Create a new token and copy it.
  </Step>

  <Step title="Configure in Pwnbook">
    1. Go to **Organization Settings → Marketplace → Corgea**.
    2. Enter your **API Token**.
    3. Click **Save & Test** to verify the connection.
  </Step>
</Steps>

## What gets synced

| Data                    | Description                                              |
| ----------------------- | -------------------------------------------------------- |
| **SAST findings**       | Code vulnerabilities with file path and line numbers     |
| **AI fix availability** | Whether Corgea has generated an auto-fix for the finding |
| **Severity**            | Critical, High, Medium, Low                              |
| **Status**              | Open, fixed, ignored                                     |

## Workbench card

The **Corgea** workbench card shows open findings by severity and how many have AI fixes available — useful for prioritizing quick wins.
