From a0feb9c3f331fcc9316213376997021f4ac83eb0 Mon Sep 17 00:00:00 2001 From: Cole Maring Date: Mon, 15 Jun 2026 09:36:24 -0400 Subject: [PATCH 1/5] add bits ai memories docs --- .../code_security/static_analysis/ai_enhanced_sast.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md index 4d433ec134d..7fb68c63e08 100644 --- a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md +++ b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md @@ -143,6 +143,12 @@ To narrow down your initial list for triage, in [Vulnerabilities][6], select **F Each finding includes a section with an explanation of the assessment. You can provide Bits AI with feedback on its assessment using a thumbs up 👍 or thumbs down 👎. {{< img src="/code_security/static_analysis/false_positive_filtering_sast_side_panel_higher_res_png.png" alt="Visual indicator of a false positive assessment in SAST side panel" style="width:100%;">}} +### Bits AI memories + +Bits AI Memories lets teams add rule-specific context that Bits AI uses when assessing SAST findings. Use memories to describe organization-specific frameworks, sanitizers, validation patterns, or codebase details that help Bits AI interpret findings for that rule. + +In the SAST rule side panel, open **Memories** to review false positive reports for the selected rule and edit custom context. Memories apply at the organization and rule level for SAST. + ## Remediation Datadog SAST uses the [Bits Code][10] to generate code fixes for vulnerabilities. You can remediate individual vulnerabilities or fix multiple vulnerabilities using bulk remediation campaigns. From c2250dd52845b851739872595087739e6dc5dd48 Mon Sep 17 00:00:00 2001 From: Cole Maring Date: Mon, 15 Jun 2026 10:08:46 -0400 Subject: [PATCH 2/5] clarify bits ai memories docs --- .../security/code_security/static_analysis/ai_enhanced_sast.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md index 7fb68c63e08..d7f687a590a 100644 --- a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md +++ b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md @@ -147,7 +147,7 @@ Each finding includes a section with an explanation of the assessment. You can p Bits AI Memories lets teams add rule-specific context that Bits AI uses when assessing SAST findings. Use memories to describe organization-specific frameworks, sanitizers, validation patterns, or codebase details that help Bits AI interpret findings for that rule. -In the SAST rule side panel, open **Memories** to review false positive reports for the selected rule and edit custom context. Memories apply at the organization and rule level for SAST. +In the SAST rule side panel, expand the false positive reports accordion to review reports shared by your organization for the selected rule. Use the custom context tab in the same section to add guidance for future Bits AI assessments. Memories apply at the organization and rule level for SAST. ## Remediation From c97f3dd34cc63e39acf046c2e5f8cb8a66c61afb Mon Sep 17 00:00:00 2001 From: Cole Maring Date: Mon, 15 Jun 2026 10:29:53 -0400 Subject: [PATCH 3/5] document default ruleset scope --- .../security/code_security/static_analysis/ai_enhanced_sast.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md index d7f687a590a..41d41c103d9 100644 --- a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md +++ b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md @@ -147,7 +147,7 @@ Each finding includes a section with an explanation of the assessment. You can p Bits AI Memories lets teams add rule-specific context that Bits AI uses when assessing SAST findings. Use memories to describe organization-specific frameworks, sanitizers, validation patterns, or codebase details that help Bits AI interpret findings for that rule. -In the SAST rule side panel, expand the false positive reports accordion to review reports shared by your organization for the selected rule. Use the custom context tab in the same section to add guidance for future Bits AI assessments. Memories apply at the organization and rule level for SAST. +In the SAST rule side panel, expand the false positive reports accordion to review reports shared by your organization for the selected rule. Use the custom context tab in the same section to add guidance for future Bits AI assessments. Memories apply at the organization and rule level for SAST. They apply only to SAST rules in the default ruleset and do not apply to custom rules. ## Remediation From 638cd334994cfc29e718bcffa7135332d0d0af48 Mon Sep 17 00:00:00 2001 From: Cole Maring Date: Mon, 15 Jun 2026 10:36:22 -0400 Subject: [PATCH 4/5] use default rulesets wording --- .../security/code_security/static_analysis/ai_enhanced_sast.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md index 41d41c103d9..f106606c74c 100644 --- a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md +++ b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md @@ -147,7 +147,7 @@ Each finding includes a section with an explanation of the assessment. You can p Bits AI Memories lets teams add rule-specific context that Bits AI uses when assessing SAST findings. Use memories to describe organization-specific frameworks, sanitizers, validation patterns, or codebase details that help Bits AI interpret findings for that rule. -In the SAST rule side panel, expand the false positive reports accordion to review reports shared by your organization for the selected rule. Use the custom context tab in the same section to add guidance for future Bits AI assessments. Memories apply at the organization and rule level for SAST. They apply only to SAST rules in the default ruleset and do not apply to custom rules. +In the SAST rule side panel, expand the false positive reports accordion to review reports shared by your organization for the selected rule. Use the custom context tab in the same section to add guidance for future Bits AI assessments. Memories apply at the organization and rule level for SAST. They apply only to SAST rules in Datadog's default rulesets and do not apply to custom rules. ## Remediation From fa4ecc115f4a9772016aa1f4f44514a7ca3e6222 Mon Sep 17 00:00:00 2001 From: Cole Maring Date: Mon, 15 Jun 2026 14:33:33 -0400 Subject: [PATCH 5/5] Capitalize Memories in heading --- .../security/code_security/static_analysis/ai_enhanced_sast.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md index f106606c74c..d4ae072b5dd 100644 --- a/content/en/security/code_security/static_analysis/ai_enhanced_sast.md +++ b/content/en/security/code_security/static_analysis/ai_enhanced_sast.md @@ -143,7 +143,7 @@ To narrow down your initial list for triage, in [Vulnerabilities][6], select **F Each finding includes a section with an explanation of the assessment. You can provide Bits AI with feedback on its assessment using a thumbs up 👍 or thumbs down 👎. {{< img src="/code_security/static_analysis/false_positive_filtering_sast_side_panel_higher_res_png.png" alt="Visual indicator of a false positive assessment in SAST side panel" style="width:100%;">}} -### Bits AI memories +### Bits AI Memories Bits AI Memories lets teams add rule-specific context that Bits AI uses when assessing SAST findings. Use memories to describe organization-specific frameworks, sanitizers, validation patterns, or codebase details that help Bits AI interpret findings for that rule.