Refactor documentation for clarity and consistency; remove unused .checkmarxIgnored file

Author: cx-amol-mane

.vscode/.checkmarxIgnored

@@ -4,18 +4,17 @@ Welcome and thank you for considering contributing to the Checkmarx Kiro Power p
 
 Reading and following these guidelines will help us make the contribution process easy and effective for everyone involved. It also communicates that you agree to respect the time of the developers managing and developing these open source projects. In return, we will reciprocate that respect by addressing your issue, assessing changes, and helping you finalize your pull requests.
 
-
 ## Quicklinks
 
 - [Contributing to Checkmarx Kiro Power](#contributing-to-checkmarx-kiro-power)
-    - [Quicklinks](#quicklinks)
-    - [Code of Conduct](#code-of-conduct)
-    - [Getting Started](#getting-started)
-    - [Issues](#issues)
-        - [Templates](#templates)
-    - [Pull Requests](#pull-requests)
-        - [Templates](#templates-1)
-    - [Resources](#resources)
+  - [Quicklinks](#quicklinks)
+  - [Code of Conduct](#code-of-conduct)
+  - [Getting Started](#getting-started)
+  - [Issues](#issues)
+    - [Templates](#templates)
+  - [Pull Requests](#pull-requests)
+    - [Templates](#templates-1)
+  - [Resources](#resources)
 
 ## Code of Conduct
 
@@ -42,6 +41,7 @@ If you find an Issue that addresses the problem you're having, please add your o
 ### Templates
 
 The following templates will be used within Checkmarx github repositories
+
 - [Feature Request Template](.github/ISSUE_TEMPLATE/feature_request.yml)
 - [Bug Report Template](.github/ISSUE_TEMPLATE/bug_report.yml)
 
@@ -58,7 +58,7 @@ PRs to our source are always welcome and can be a quick way to get your fix or i
 
 For changes that address core functionality or would require breaking changes (e.g. a major release), please open an Issue to discuss your proposal first.
 
-In general, we follow the _fork-and-pull_ Git workflow
+In general, we follow the *fork-and-pull* Git workflow
 
 1. Fork the repository to your own Github account
 2. Clone the project to your machine
@@ -67,7 +67,7 @@ In general, we follow the _fork-and-pull_ Git workflow
 5. Push changes to your fork
 6. Open a PR in our repository and follow the PR template so that we can efficiently review and assess the changes. *Ensure an associated Issue has been accepted by the Checkmarx team.*
 
-### Templates
+### Pull Request Template
 
 The following template will be used within Checkmarx github repositories
 

CONTRIBUTING.md

@@ -1,14 +1,14 @@
 # Checkmarx Developer Assist Power for Kiro
 
-This repo is the public repo for installing the "Checkmarx Developer Assist" Power into the Kiro (Amazon's AI agent) IDE. A Kiro Power is a packaged extension that adds specialized capabilities to the Kiro AI development environment. Extensive docs on what powers are, how to install them, and how to use them can be found here: https://kiro.dev/docs/powers/.
+This repo is the public repo for installing the "Checkmarx Developer Assist" Power into the Kiro (Amazon's AI agent) IDE. A Kiro Power is a packaged extension that adds specialized capabilities to the Kiro AI development environment. Extensive docs on what powers are, how to install them, and how to use them can be found here: <https://kiro.dev/docs/powers/>.
 
 The Checkmarx Power brings AI-powered application security scanning directly into your development workflow, enabling real-time vulnerability detection and remediation for SAST, secrets, IaC, containers, and open source dependencies.
 
 ## How to Use
 
 ### Prerequisites
 
-1. **Kiro IDE** - Free tier available at [kiro.ai](https://kiro.ai)
+1. **Kiro IDE** - Free tier available at [kiro.dev/pricing](https://kiro.dev/pricing/)
 2. **Checkmarx One Account** with Developer Assist enabled
    - Subscribe via [AWS Marketplace](https://aws.amazon.com/marketplace/pp/prodview-xbxjoco7f6xwi)
    - Or sign up at [Checkmarx One](https://checkmarx.com)
@@ -18,7 +18,7 @@ The Checkmarx Power brings AI-powered application security scanning directly int
 
 ### Installation
 
-**Install via GitHub**
+#### Install via GitHub
 
 1. Open Kiro IDE
 2. Access the Powers panel:
@@ -95,7 +95,7 @@ Once the Checkmarx Power is installed in the Kiro IDE, you'll be able to use all
 
 Simply chat with Kiro and ask for security help:
 
-```
+```text
 You: "Can you check if there are any security vulnerabilities in this code?"
 
 Kiro: [Uses Checkmarx codeRemediation to scan and analyze]
@@ -120,6 +120,7 @@ For detailed workflows and examples, see [POWER.md](checkmarx-power/POWER.md).
 **Solutions:**
 
 1. **Verify your Checkmarx One base URL is correct**:
+
    ```bash
    # Your URL should look like one of these:
    https://eu.ast.checkmarx.net
@@ -134,6 +135,7 @@ For detailed workflows and examples, see [POWER.md](checkmarx-power/POWER.md).
    - Generate a new key if needed
 
 3. **Ensure the URL format in mcp.json is correct**:
+
    ```json
    "url": "<base_url>/api/security-mcp/mcp"
    ```
@@ -151,23 +153,27 @@ For detailed workflows and examples, see [POWER.md](checkmarx-power/POWER.md).
 ### Remediation Tool Errors
 
 **Error:** "Remediation not available for this risk type"
+
 - Some risk types may require manual remediation
 - Check [POWER.md](checkmarx-power/POWER.md) for supported remediation types
 
 **Error:** "Package remediation failed"
+
 - Verify the package name and version are correct
 - Check if a remediated version exists in the package registry
 - Consider alternative packages with equivalent functionality
 
 **Error:** "Language not supported"
+
 - ASCA currently supports: Java, JavaScript (Node.js), C#, Go, and Python
 - Other languages may be added in future releases
 
 ### Verifying Your Setup
 
 Run these checks to verify everything is working:
 
-**1. Check MCP Configuration**
+#### 1. Check MCP Configuration
+
 ```json
 // Your mcp.json should have valid values (not placeholders):
 {
@@ -183,16 +189,19 @@ Run these checks to verify everything is working:
 }
 ```
 
-**2. Test Authentication**
+#### 2. Test Authentication
+
 - Open Kiro chat
 - Ask: "Can you use Checkmarx to check for vulnerabilities?"
 - If configured correctly, Kiro will acknowledge it can use Checkmarx tools
 
-**3. Verify Checkmarx One Access**
+#### 3. Verify Checkmarx One Access
+
 - Log in to your Checkmarx One portal in a browser
 - Ensure you can access the portal successfully
 
-**4. Check Power Installation**
+#### 4. Check Power Installation
+
 - In Kiro Powers panel, verify "Checkmarx" appears in the list
 - Ensure it's enabled (not greyed out)
 
@@ -209,11 +218,10 @@ Run these checks to verify everything is working:
 ## Documentation & Support
 
 - **Full Documentation**: See [POWER.md](checkmarx-power/POWER.md) for detailed workflows, troubleshooting, and best practices
-- **Checkmarx Docs**: https://docs.checkmarx.com/en/34965-405960-checkmarx-developer-assist.html
-- **Kiro Powers Guide**: https://kiro.dev/docs/powers/
+- **Checkmarx Docs**: <https://docs.checkmarx.com/en/34965-405960-checkmarx-developer-assist.html>
+- **Kiro Powers Guide**: <https://kiro.dev/docs/powers/>
 - **Support**: Contact Checkmarx Support or your account team
 
-
 ## Open Source Project Health
 
 This repository includes standard FOSS governance files:
@@ -226,6 +234,4 @@ This repository includes standard FOSS governance files:
 - [Maintainers](MAINTAINERS.md)
 - [Code Owners](.github/CODEOWNERS)
 
-Issue and pull request templates are available under .github/.
-
-
+Issue and pull request templates are available under .github/.

README.md

@@ -40,5 +40,4 @@ Use the form in [VULNERABILITY_REPORT.md](VULNERABILITY_REPORT.md) when submitti
 ## Safe Harbor
 
 If you act in good faith, avoid privacy violations, and do not disrupt systems,
-we will treat your report as authorized security research.
-
+we will treat your report as authorized security research.

SECURITY.md

@@ -40,5 +40,4 @@ Submit this form privately via:
 ## Disclosure Preferences
 
 - Public disclosure preference:
-- Requested coordination timeline:
-
+- Requested coordination timeline: