1 of 79

Ketryx Documentation

Introduction

Welcome to the documentation of Ketryx Platform, a system to build validated software, supporting FDA software compliance and compliance with standards like: ISO 13485, IEC 62304, and ISO 14971.

This documentation is structured as follows:

Manuals provide a high-level description of different areas of Ketryx Platform.
Work Instructions provide detailed, step-by-step guidance for how to perform certain tasks in Ketryx Platform.
Integrations provide instructions for how to set up and work with connections to various other systems.
Reference provides in-depth technical information.
API documents how to access Ketryx Platform programmatically, for integration with other tools and systems.

Manuals

MAN-11 Approval Rules

Manual for approval rules in Ketryx

1. Introduction

1.1. Purpose

The purpose of this manual is to instruct users on the different configuration options available for approval rules in Ketryx.

MAN-13 Data Export

Manual for project data export, particularly related to 21 CFR Part 11 data retention policy compliance

1. Introduction

1.1. Purpose

The purpose of this manual is to guide users through the process of exporting all project data from Ketryx, ensuring data continuity by providing the ability to back up project information.

1.2. Scope

The scope of this manual is the data export mechanism from Ketryx.

2. Exporting all data from Ketryx

21 CFR Part 11 outlines requirements for electronic records and signatures, mandating that electronic records and signatures be trustworthy, reliable, and equivalent to paper records and handwritten signatures, with specific data retention requirements mirroring those for paper records. Ketryx ensures continuity for users by providing the ability to export all data — backing up complete project information. Ketryx offers two options for exporting your data.

2.1. Project export mechanism

Ketryx provides the capability to generate an archive containing all relevant project data in JSON format. This mechanism is ideal for creating a complete backup or fulfilling internal data retention policies related to compliance guidance, such as 21 CFR Part 11.

To enable this functionality, please .

2.2. API access

Ketryx provides programmatic access to manage configuration items and records, including data export. Please refer to the for further guidance.

Work Instructions

Integrations

Integrations Overview

Integration architecture and synchronization reference for third-party systems

Ketryx provides enterprise-grade integrations with existing development and quality management tools, enabling organizations to maintain their current workflows while achieving regulatory compliance. The platform acts as a central orchestration layer that connects disparate systems, enforces standardized processes, and maintains comprehensive audit trails across the entire software development lifecycle.

Project updates

A core premise of Ketryx is that it is a connected system, and that data is automatically synchronized between Ketryx and other systems. This is achieved through a combination of manual and automated triggers, as well as through the Ketryx API.

Manual Triggers:

Jira

Guide on the Ketryx integration with Jira

1. Introduction

Ketryx provides a uniquely deep integration with Atlassian Jira Cloud,

configuring it to align your Jira setup with standards such as ISO 13485, IEC 62304, and ISO 14971,

Chrome extension

Guide on the Ketryx Chrome extension

1. Introduction

The Ketryx Chrome extension provides a seamless way to navigate between TestRail and Ketryx, enhancing your workflow efficiency. This extension allows you to:

Quickly access Ketryx records directly from TestRail

Source Code

Guide on working with source code and Git repositories in Ketryx

1. Introduction

1.1. Purpose

This guide provides an introduction to working with Git repositories in Ketryx. The focus is on outlining the process of setting up repositories. This guide will walk you through the steps required to establish a connection between Git and Ketryx.

Azure DevOps

Guide on integrating Azure DevOps with Ketryx

1. Introduction

This section provides an introduction to the integration of Azure DevOps with Ketryx. Our focus is on outlining the process of setting up this integration, utilizing Personal Access Tokens (PAT) to enhance your software development practices. This guide will walk you through the steps required to establish a connection between Azure DevOps and Ketryx.

Bitbucket

Guide on integrating Bitbucket with Ketryx

1. Introduction

This section provides an introduction to the integration of Bitbucket with Ketryx. Our focus is on outlining the process of setting up this integration, utilizing App Passwords and Repository Access Tokens, to enhance your software development practices. This guide will walk you through the steps required to establish a connection between Bitbucket and Ketryx.

1.2. Tools

Tools used to develop and release a product with Ketryx Lifecycle Management are provided in . The release process is described in detail in , while setting up code repositories is described in .

2. Repository access

The integration process with Bitbucket varies slightly depending on whether you are working with public or private repositories. Here's a breakdown of the key differences:

2.1. Public Repositories

Accessibility: Public repositories are open to the public, meaning that anyone can view the repository content and its history.
Integration Setup: For public repositories, the setup process for integrating with Ketryx is generally straightforward. You do not need to use a access tokens for basic integration tasks, such as SOUP dependency analysis.
Data Retrieval: Accessing publicly available data from Bitbucket, like pull requests or code changes still requires a Repository Access Token to access Bitbucket's API.

2.2. Private Repositories

Accessibility: Private repositories restrict access to authorized individuals or collaborators. Only those with permission can view and interact with the repository.
Integration Setup: When integrating with private repositories, you typically require an access token. This token ensures secure and authorized communication between Bitbucket and Ketryx for tasks like SOUP dependency analysis and Code Change Reviews.

Ketryx supports SOUP dependency analysis using an App Password for private repositories. However, we recommend using a Repository Access Token for this purpose, as this type of token can be restricted to a single repository, while an App Password has access to all repositories in the account. Additionally, only by using the Repository Access Token can you access Code Change Reviews.

It's important to consider your repository's visibility when setting up the integration, as public and private repositories have distinct access requirements. The integration guide provides specific instructions based on the type of repository you are working with, ensuring a seamless and secure integration experience.

3. Access tokens

3.1. Creating a Repository Access Token for Bitbucket

A guide on how to create such a token can be found .

The same authentication method is used to fetch the Git repository (for SOUP dependency analysis) as well.

The repository access token needs to have at least the following permissions:

Repository: Read
Pull requests: Read

When entering the authentication credentials in Ketryx, set the following:

Username: x-token-auth (as a verbatim value, as documented )
Password: (the access token)

3.2. Creating an App Password for Bitbucket

Please see for information on how to create an App Password.

When entering the authentication credentials in Ketryx, the username has no effect, but the password should be the App Password.

Ketryx supports SOUP dependency analysis using an App Password for private repositories. Only by using the Repository Access Token can you access Code Change Reviews as well. See for more information.

4.1. Using the Code Change Review feature with Bitbucket

For information on how to use the Code Change Review feature, please see the .

GitLab

Guide on integrating GitLab with Ketryx

1. Introduction

This section provides an introduction to the integration of GitLab with Ketryx. Our focus is on outlining the process of setting up this integration, utilizing Personal Access Tokens and Project Access Tokens, to enhance your software development practices. This guide will walk you through the steps required to establish a connection between GitLab and Ketryx.

Google Workspace

Quality Management Documents

Guide on using Google Docs for quality management in Ketryx.

1. Introduction

Ketryx offers a Google Drive integration to sync folder content to Ketryx at either the project or organizational level. Organizational-level syncing is particularly useful for Quality Management documents that govern all projects within your Ketryx organization. To enable org-level documents, please contact Ketryx support.

Reference

Project Settings

Project settings in Ketryx

Project settings in Ketryx are used to configure various aspects of a project, such as design verification, test management, release controls, and more. These settings are used to customize the behavior of Ketryx for a specific project, particularly to opt in or opt out of various computational controls enforced by Ketryx.

Design verification

Design verification settings are used to configure the design verification process for a project.

Custom Relations

Reference of the custom relations feature in Ketryx

Ketryx provides flexible traceability management through Custom Relations, enabling you to define specialized relationships between configuration items that go beyond the standard relation types.

This feature enables:

Tailored traceability for your specific product development workflow (e.g., software-hardware dependencies, threat-vulnerability links, feature dependencies)
Controlled linking with target item KQL filters that prevent invalid (according to your process) connections

Glob Pattern Matching Algorithm

Reference of the Glob Pattern Matching Algorithm

The glob pattern matching algorithm describes the rules and behavior for matching file paths against on the Ketryx Platform, specifically for restricting dependency file locations and detecting Git-based items for repositories.

Examples

Glob Pattern

Meaning

Guest Role: Users with Read-Only Access

Guide on adding users to the organization with Read-Only access

New in 2.13

Overview

Ketryx supports three types of user roles to accommodate different access needs:

HOW TO GUIDES

API

Authentication

Authentication for Ketryx API endpoints happens via API keys.

API keys can be configured at the organization level under Organization > API keys:

Each API key can have the following permissions, controlling what a caller using an API key can do with the API:

Create project: whether new projects can be created

Group API

API to manage groups in Ketryx

Ketryx exposes an API to manage groups programmatically. See also the documentation on authentication and API keys.

Groups

Project API

API to manage projects, versions, and documents in Ketryx

Ketryx exposes an API to manage projects programmatically. There is also a formal OpenAPI specification defining this API, and a separate page about authentication and API keys.

Projects

Project

Versions

Version

Generated documents

Use this API to generate and download the SBOM document for a given project. Optionally, a certain version ID can be specified:

If no versionId is specified, the document for the "current draft" state (corresponding to the main analyzed branch, not specific to a certain version) is downloaded.
If a versionId is specified, the document is generated for the given version (and its corresponding release ref).

By default, the response is an Excel file in binary form (xslx). Optionally, a format parameter with value cyclonedx can be used to generate and download the SBOM document in CycloneDX JSON format (specifically, ).

Item API

API to manage configuration items and records in Ketryx

Ketryx exposes an API to manage configuration items programmatically. See also the documentation on authentication and API keys and webhooks.

These API endpoints generally use pagination, based on the query parameters startAt and maxResults. The maximum number of entries to return at once is 1000. The effective values of startAt and maxResults is also returned as part of the API response.

Items

Item records

The fields query parameter allows you to selectively include additional data in the response. You can specify one or more fields as a comma-separated list (e.g., fields=approvalState,otherField). Available fields include:

approvalState: Returns detailed approval information including approval steps, approving users, and approval blockers

Query project records

approvalState: Returns detailed approval information including approval steps, approving users, and approval blockers

Use this API to query records based on a query.

Webhooks

Webhooks to receive API notifications upon certain events in Ketryx

Webhooks can be used to receive programmatic notifications upon certain events in Ketryx.

Webhooks are configured via the advanced setting Webhooks. The following events are supported:

recordApproval: Approval of an item record
releaseApproval: Approval of a version/release
milestoneApproval: Approval of a milestone
documentApproval: Approval of a document in the EDMS
testPlanApproval: Approval of a release test plan
vulnerabilityApproval: Approval of a vulnerability

Each event can be configured to trigger a webhook call via an HTTP POST or GET request. When using a POST request (the default), a JSON payload will be sent with the request, containing the following data:

Event

Fields in JSON payload

All IDs are specified as Ketryx ID strings (e.g., KXREC1N91YGN3JB8PVT4DDFVF4Y64YT).

Note that webhooks are also triggered for partial approvals, i.e., any time a user makes an approval, even if the approved object is not fully approved yet. To distinguish fully approved objects, use fields such as isControlled, isReleased, and isFullyApproved. If the approval resulted in a new (controlled) record, that record will be indicated by the field newRecordId.

Webhooks are delivered asynchronously. The result of webhook calls can be inspected in a project's History > System logs.

MAN-12 Computational Controls

Manual for computational controls in Ketryx

1. Introduction

This document provides a comprehensive overview of the computational controls implemented in the Ketryx Platform. These controls are designed to ensure the correct execution of Quality System procedures in software development, particularly for medical devices and other regulated industries.

1.1. Purpose

To outline Ketryx Platform's computational controls and their benefits.
To show how these controls align with industry standards like IEC 62304.
To highlight the platform's role in enhancing software development quality assurance.

1.2. Scope

This guide provides an in-depth look at the Ketryx Platform's computational controls across three key levels: task, activity, and process. It covers configuration item controls, module-level controls, release-level controls, and incremental testing capabilities. Each section explores the available controls, their configurability, and their impact on the software development lifecycle, with a focus on enhancing quality assurance and regulatory compliance.

1.3. Document Structure

The content is organized to mirror the Ketryx framework's hierarchy:

Task Level: Configuration item controls
Activity Level: Module controls
Process Level: Release controls

Within each level, we describe the available features, their technical implementation, and examples of their application in maintaining quality assurance standards.

This technical guide is intended for software developers, quality assurance specialists, and system administrators evaluating or using the Ketryx Platform. It assumes familiarity with software development processes and quality management systems in regulated environments.

2. Description of Computational Controls

2.1. Levels of Control

One of the key principles from IEC 62304 that is employed in the design of the Ketryx platform is hierarchy of process. 62304 utilizes the following scheme to categorize different units of work:

Tasks are related and interlinked to make up activities, activities are related and interlinked to make up processes. \

This structure is mirrored in the Ketryx framework:

In Ketryx, when a user is performing a task, they are generally working on a configuration item, such as requirement definition, authoring specifications, or executing tests.

When a user is working on an activity, they are generally working at the module level - resolving traceability, performing overall risk management, or creating a test plan.

When users work on the process, they generally work at the release level, seeking to complete the overall cycle successfully.

This document walks through the computational controls available in Ketryx through this hierarchy, starting at the configuration item level.

2.2. Features

2.2.1. Task Level - Configuration item controls

Approval Rules

Each configuration item type may have its own configurable approval rule requiring certain groups to approve an item before it becomes controlled. For example, a requirement item type may have different approvals than a software item specification.\
[Supported in Jira] For more complicated workflows, approvals may gate the transition a configuration item from one state to another. For example, requiring approval to transition a CAPA from Open to Planning. \
It’s possible to configure whether approvals require Part 11 compliant signatures on the grain of the configuration item type.

For details on the configuration options available for approval rules in Ketryx, refer to

Required Fields

Configuration items can be gated from approval if they do not have the required fields filled out. These field sets are configurable and can be applied to custom fields.\
[Supported in Jira] For more complicated workflows, approvals may be gate transitioning a configuration item from one state to another. These transitions may also be gated by required fields.

Invalid Items

Invalid items allow granular definitions of field values and status combinations that should block a release. These are paired with human-readable error messages that explain to the user why a particular item is invalid. This is different from approval rules because items can be invalid without passing through an approval process.

For example, to enforce that Anomalies with a Resolution of "Duplicate" have a certain status:

This is a powerful mechanism that can also enforce certain guard rails for the test plan of each release. For example, to enforce that all tests that act as risk controls are included in the test plan:

2.2.2. Activity Level - Module controls

Traceability

Coverage checks can be configured for the RTM, which allows enforcement that trace links have been established between item types. For example - every requirement shall have a specification item that fulfills it. A project team can define as many of these checks as they desire and have engineering controls for the specific V-model that the project team defines.\
The traceability matrix also has the capability of configuring warnings and visual indicators based on missing checks along a trace chain to give granular feedback on all the actions that need to be taken to bring a trace into alignment with the QMS requirements. A complete and compliant trace will have a green indicator at the bottom:\

Risk Management

Ketryx can enforce different risk models and evaluations on different hazard types. A common application is to have different risk models for hazards of type cybersecurity versus risks of type safety.
It is configurable on the project level how strictly to enforce an association between a specific harm and a severity. It can be a soft association, where the selection of a harm will suggest a severity that can then be changed by a user. It can also be a hard association, where severity and harm are directly linked to each other and cannot be changed.\
It is configurable as to how strict selections of hazards and hazardous situations are made. In the defaults, these are open fields that users can populate with arbitrary values. In strict enforcement, these fields can only be selected from specified lists.

Design Verification

Ketryx can enforce a strict order of design verification on a trace-by-trace basis with the Require re-verification of accepted items after change control setting. This setting will require a re-review of any design output of a changed design input. For example, if a requirement is changed, the specification items that fulfill that requirement will be transitioned from closed to resolved - requiring a re-approval to verify that the specifications still fulfill the requirement. This setting cascades, such that if a specification is re-opened due to the requirement, those test cases that test the changed specification will be transitioned to a state that requires re-approval.
This computational control triggers when there are edits to the controlled fields of an upstream item. This includes edits to system fields (e.g., Summary, Description, Acceptance Criteria) or any additional fields explicitly configured in your projects advanced settings.
Changes to fields that Ketryx treats as uncontrolled - such as Status or fields set as uncontrolled via the advanced settings do not trigger this computational control.
This means that status-only transitions (e.g., moving from Reopened → Closed without editing any content), are ignored by this control. Downstream items will not reopen unless the upstream change is made to a controlled field, and the changed item re-enters an approved, controlled state.
It’s important to note that this feature functions at the level of a trace. It will not affect items that are not included in the trace from the originating change. There is further discussion and an example in the

Granular Control with Design Filters

For more precise control over the design verification process, Ketryx offers advanced settings that allow you to define exactly which items are treated as design inputs or outputs using KQL (Ketryx Query Language) filters.

Custom design input filter: This filter refines the behavior of the Require controlled design inputs before a design output can be approved setting. You can provide a KQL filter to specify which items are considered design inputs. The item being evaluated is matched by the keyword selected.

Note on cross-project referencing: The filter's scope is limited to the current project and any other projects it explicitly references. To ensure all design inputs are found, you must add a reference to every project that contains relevant design inputs with a Referenceable items filter that matches the design inputs. The check will fail to find design inputs from any project that is not referenced here.

For example, to treat all change requests that have an "Affects" relation to an item as design inputs for that item, you can use the following KQL filter:

Custom design output filter: This filter refines the behavior of the Require re-verification of accepted items after change control setting. You can provide a KQL filter to specify which items are considered design outputs. The item being evaluated is matched by the keyword selected.

Note on cross-project referencing: The filter's scope is limited to the current project and any other projects it explicitly references. To ensure all design outputs are found, you must add a reference to every project that contains relevant design outputs with a Referenceable items filter that matches the design outputs. The check will fail to find design outputs from any project that is not referenced here.

For example, to consider all software item specifications as design outputs if they have an "is affected by" relation from the current item, you can use the following KQL filter:

Test Management

Each release is required by default to have a test plan for which all of the test cases that are included have been reviewed and approved and all of the test cases have associated passed test executions.\
Enabling Require a manual test execution for each effective automated test execution imposes a control that a review and approval cycle on the outputs of an automated test - rather than just a report of the pass / fail status of an automated test.\
Enabling Require automated tests to be associated with test cases imposes a control that an automated test must be reported against a documented test case in the system. By default Ketryx is more lenient than this, allowing automated tests to be reported directly against other configuration items, such as specifications and requirements.\

Training

Enabling the Require training control enforces that users who have not completed their required training items cannot execute the approval authority of the group that has that training requirement. For example, if a user is in an R&D group and that group is required to read and acknowledge the Quality Manual of the organization to sign off as an approver. If they have not completed the acknowledgment of the Quality Manual, Ketryx will not allow them to sign for the approval and will alert them to the training deficiency.

Milestones

Milestones allow an organization to collect sets of configuration items and documents into a set and can block approvals of other configuration items until the configuration items in the milestones and the milestone itself are approved. This is a powerful feature if an organization seeks to work in a more waterfall fashion. Milestones can also be used with less imposed control, serving as status indicators to the completion of major tasks - such as requirements definition and approval, for example.

2.2.3. Process Level - Release controls

Release Checklist

Note: All of these controls are enabled by default, but can be disabled at the project level to relax certain constraints.

Disabling Require controlled and accepted dependencies allows dependencies managed in the SBOM module to not be reviewed and approved to complete a release.\
Disabling Require controlled items allows other configuration items (ex: requirements, specifications) to not be reviewed at the configuration item level to complete a release.\
Disabling Require a controlled test plan removes the requirement that a test plan must be defined for a release to complete the release.\

Build and Deployment Management

The approval of a release within Ketryx can be used to gate deployments to certain environments in organizations' CI/CD processes. The primary application of this capability is failing builds that deploy to a production environment if a release is not completed. This provides a strong guarantee that unvalidated software cannot be deployed into production.

2.3. Enabling incremental testing

For the following use case:

I, as a release manager, would like to utilize the testing evidence as long as the underlying clauses that are being tested (requirements, specifications, etc) have not changed. This would allow my teams to not repeat testing unnecessarily.

This is currently possible in the Ketryx system with a combination of the controls:

Require re-verification of accepted items after change control
Require test executions after controlled test cases

To give an illustrative example, consider the following trace that is part of a larger project\

The green boxes around each configuration item indicate that it has been reviewed and controlled (a yellow box indicates that the clause is open to editing).

Currently, the trace is ‘complete’. All of the items are controlled, and a test execution satisfies the test case.

A user decides they need to re-open the requirement for some refinement.

Because Require re-verification of accepted items after change control is enabled, the specification and test case items are reopened, as they would need to be re-reviewed to ensure the specification still fulfills the requirement, and the test case still validates the requirement (and verifies the specification, but that is a secondary effect).

Now, as the test case is no longer considered controlled, the Require test executions after controlled test cases kicks in, this would invalidate the current test case and require a re-execution to bring this trace back into alignment with the requirements of the QMS.

The important thing to note is that these mechanisms operate at the level of the trace. This means that if nothing changes on a trace, then the test execution would not need to be re-executed. Tests would only need to be re-executed for those traces where something changed.

This mechanism works with any connected system. So it would work with TestRail defined tests.

As a final note, a side effect of this configuration is the requirement of the re-verification of the items in the trace downstream of the change. In the case above - the re-review of the specification and test case item. This may be undesirable. If that’s the case, it’s a straightforward feature to develop to invalidate a test execution in the event that any configuration item in its trace is changed, without the attendant re-verification steps.

MAN-06 Test Management

Manual for managing manual and automated tests with Ketryx Platform

1. Introduction

This manual describes the setup and processes for managing both manual and automated tests with Ketryx Platform.

Ketryx supports managing tests via its standard items Test Case and Test Execution, via third-party test management solutions such as Xray for Jira, and integrates with automated test runs through GitHub Actions or any tool that can call the Ketryx API.

2. Manual Tests

2.1. Creating and Executing Tests

Tests are defined using the Test Case item type in Ketryx, where the Steps and Expected behavior for each test case are declared. Each Test Case is associated with one or more Tested items. Like Requirements and Software Item Specs, Test Cases are "long-lived" items that are introduced in a certain version and remain in effect unless/until they are marked as obsolete in a certain version. See for details.

Before a product version can be released in Ketryx, all Requirements and other configuration items need to trace to tests (per the configured traceability mode) and all those tests need to be executed, unless they are excluded from the .

Manual test executions are represented by the Test Execution item type in Ketryx, which contains the Steps and Expected behavior from a Test Case, along with the actual Observed behavior and a Test result. Test Executions are "point-wise" items associated with one particular version, as defined by the Introduced in version field.

Test Executions can be created in the following ways:

On the Ketryx Test management page by selecting Test Cases, selecting a particular version, and pressing Create executions for selection.
In Jira by using the New Test Execution in the Traceability widget of a particular Test Case, or by manually creating a Test Execution work item from scratch. In these cases, Introduced in version needs to be set manually on the Jira work item.
If using Xray for Test management, in Jira by creating an Xray Test Execution work item and adding Xray Tests to it. If you are using the Xray Test Execution work item type, you should not use method 1 or 2 above to create Test Executions.

See for details.

If Test Executions are created for Test Cases that have automated tests associated with them, they will inherit the Observed behavior from the logs of those automated tests (see the section on below).

2.2. Defining a Release Test Plan

By default, Ketryx assumes that all available Test Cases in a project are executed in each version where they are effective (based on their Introduced in version and Obsolete in version fields). Sometimes only a subset of those tests are only actually relevant for a release, though, depending on what parts of the system changed and need to be (re-) tested. You can define a more granular release test plan on the Test management page in Ketryx, by selecting a version, a subset of the available tests, and choosing Manage release test plan > Exclude selected tests. Note that, by default, all tests in a project are included. Note: If using Xray for Test management, you may want to manage Test Plan membership for a version using the Xray Test Plan work item type. If that is the case, please see the Xray section below.

After excluding tests from the release test plan, you can include them again by selecting them and choosing Manage release test plan > Include selected tests.

Tests from other are excluded by default. To opt into executing them, you can explicitly include them in the release test plan. Note that the corresponding Test Execution still needs to happen in the current (referencing) project, as opposed to the referenced project.

Ketryx does not require excluded Test Cases to be executed, while still considering their tested items to be properly traced to tests.

A non-default release test plan needs to be approved by the relevant approval steps defined by the Test Plan approval rules. The approval state of a test plan by each approval step can be tracked in the sidebar on the Test management page. To approve a test plan, select the relevant version on the Test management page and click Approve in the sidebar. If there are any changes to the test plan (i.e., more Test Cases are excluded), it needs to be re-approved before the version can be released.

The test plan of a released version cannot be changed anymore.

Requirements and specifications only associated with excluded tests are indicated as excluded in the Requirements traceability matrix page and document.

2.3 Integration with test management tools

Please note, that when using the default Ketryx scheme, you need to make a copy of that schema in Jira and add Xray items to it. Then apply the new scheme to the Jira space (formerly project) in order to make Xray items available. Establishing a Xray connection does not automatically change work type schemes.

Ketryx integrates with test management tools such as Xray and TestRail, enabling synchronization of test plans, test cases, executions, and results while maintaining full traceability within Ketryx.

For detailed setup instructions, data mapping specifications, and synchronization behavior, please refer to:

3. Automated Tests

3.1. Creating a Ketryx API key

To interact with Ketryx programmatically, such as from GitHub Actions or via the HTTP-based API, you need an API key. API keys can be managed under Organization > API keys. This is only allowed for organization owners and needs to be confirmed with an electronic signature.

An API key's name only serves as a "nickname" to recognize it later. It is not needed in the actual authentication mechanism.

An API key can have the following permissions:

Report test results: allows reporting of automated test results to Ketryx
Retrieve release status: allows retrieving the release status of a version from Ketryx and other checks

After creating an API key, a secret token of the form KXTK_... is displayed. Copy this token and store it in a secure place. For security reasons, it cannot be retrieved again later. This token is needed to authenticate programmatic requests to Ketryx.

API keys remain active until they are revoked.

3.2. Setting up GitHub Actions

Workflows in can report builds and test results to Ketryx using the .

The API key's secret token should be stored as an in GitHub, and exposed to the Ketryx GitHub Action as in the following:

In addition, the Ketryx project ID (e.g., KXPRJ49GQYFQ5RR9KRTPWTRTC39YZ9W) must be passed to the action's project parameter.

By default, the reported build and tests are associated with a project version in Ketryx based on the build commit SHA. Any version whose release ref pattern (as configured in the project settings) resolves to the given commit is considered relevant for the build. To override this default, you can pass an explicit value (either the full version name or the Ketryx version ID) to the version parameter.

If you have several "parallel" builds that report test results, you can set the build-name parameter to disambiguate them. For each unique build name associated with a version, the most recent build is considered the effective build, overriding any previous builds (and associated automated tests) with the same name. For instance, this can be useful if you have a CI build that runs unit tests, while other CI builds run end-to-end tests, and they should not override each other.

See the for details.

3.3. Using the HTTP-based API

To interact with Ketryx from other CI/CD platforms or local systems, you can use its HTTP-based API. API requests are authorized using the HTTP Authorization header

with the secret token from a Ketryx API key.

Note the following when using the API at /api/v1/builds:

The Ketryx project ID must be passed via the project parameter.
Either the version or the commitSha parameter must be set. If a commit SHA is given, any version whose release ref pattern (as configured in the project settings) resolves to the given commit is considered relevant for the build.
Build artifacts (including test result files) should be uploaded via the API at

See the for details.

3.4. Associating Automated Tests with Configuration Items

Ketryx detects automated tests in various test file formats and associates them with tested configuration items based on annotations that mention the item's ID. That ID can be the:

Item's Jira work item key (e.g., SAMD-45)
Full Ketryx item ID (e.g., KXITM5QJ97Z4X3X91AVRSZYZ7JHHPDK)
Git-based item's itemId that is specified in the source code file (e.g. Markdown). The details of how tests are annotated depend on the test file format, as described below.

The tested items can be:

Test Cases (which is typically the case for end-to-end tests that are predefined in Jira and approved).
Requirements (which is typically the case for unit, integration or end-to-end tests that are not managed in Jira).
Software Item Specifications (which is typically the case for unit, integration or end-to-end tests that are not managed in Jira).
Risks (which is typically the case for unit, integration or end-to-end tests that are not managed in Jira).

Ketryx does not impose a limitation on which or how many configuration items are referenced as tested items in an automated test case. If you want to enforce that all automated tests are associated with a predefined Test Case (e.g., so that you can approve the test steps before they are executed), you can activate the option Require automated tests to be associated with test cases in the project settings.

3.4.1. Cucumber

Use an annotation of the form @tests:ID or @implements:ID on a Scenario in syntax.

Use @implements tag to only reference an existing Jira Test Case item, in any other case please use the @tests tag.

Use the json reporter ("formatter") to generate a JSON report to send to Ketryx.

3.4.2. JavaScript

In , , and similar JavaScript test frameworks, mention the tested item ID in the test name itself:

Generate a JUnit XML report to send to Ketryx.

3.4.3. Python

In , use the record_property callback to store the tested item ID as additional metadata on a test case:

Use the junitxml output format to generate a JUnit XML report to send to Ketryx.

3.4.4. Java, Kotlin and Swift

Use the @tests:ID annotations in comments above test methods. .

Generate a JUnit XML report to send to Ketryx.

3.4.5. JUnit XML

Most test frameworks in common programming languages (such as JavaScript and Python described above) support generating a JUnit XML report. Ketryx reads item IDs from <property> elements, attributes (tested-item-id or assertions), or annotations in test names. All the following examples would be recognized:

A name annotation at the level of the <testsuite> is also recognized, and associates all included test cases with the given element (unless they have a more specific association).

3.5. Reporting of Automated Tests

The Test management page and testing report documents show both manual Test Executions and automated test executions.

The detail page for each automated test shows what build it is associated with, the tested items (typically Test Cases or Software Item Specifications), the log output of the test, artifacts (e.g., images) uploaded with the test, and other relevant details.

Automated tests can also be reached from the detail page of each project build.

4. Automated Tests with Manual Review

If a Test Case has both automated tests associated with it and manual test executions, the manual test executions take precedence. This allows you to manually "override" an automated test result.

You can select Test Cases with automated test executions on the Test management page and choose Create executions for selection to create corresponding Test Execution items. Those Test Executions will inherit the Steps and Expected behavior from the Test Case, and the logs (as Observed behavior) and Test result from the automated test execution. Test Executions still need to be approved and put into a controlled state as usual; so this is a way to manually review and sign off on individual automated tests.

To require a manual review of all effective automated tests, activate the option Require a manual test execution for each effective automated test execution in the project settings under Test management. This will prevent automated test results from being considered directly for full traceability; instead, there has to be a manual Test Execution created through Create executions for selection for the effective automated test of each Test Case.

MAN-05 Milestones

Manual for milestone management as part of the release process using Ketryx Lifecycle Management

1. Introduction

1.1. Purpose

The purpose of this manual is to define the activities that will be performed as part of the development of a product (the Product) managed with Ketryx Lifecycle Management using milestones.

Milestones are significant points in the software development process that mark the completion of specific deliverables, activities, or achievements. They provide essential checkpoints for assessing progress, managing risks, and ensuring compliance with quality standards. Milestones typically involve key decision points and act as important reference points throughout the software development lifecycle.

Milestones act as measurable indicators of progress throughout the software development process. They enable to track and evaluate the completion of critical tasks, ensuring that the project stays on schedule. They also serve as opportunities to assess and manage risks associated with the software development process. At each milestone, risks can be evaluated, and appropriate mitigation strategies can be devised to ensure the overall success of the project.

Milestones provide natural breakpoints to verify compliance with relevant regulations, standards, and guidelines. This helps ensure that the software development process adheres to the required quality, safety, and performance criteria.

Examples

One example could be a milestone for the Requirement configuration item type. It marks the completion of the requirements gathering and analysis phase. It confirms that the software requirements have been adequately captured, documented, and validated.

Another example could be combining multiple milestones in sequence, e.g. for validation testing. One milestone requiring all Test Cases to be in a controlled state, and another requiring all Test Executions to be in a controlled state. These indicate the completion of testing activities, including unit testing, integration testing, system testing, and validation testing. It verifies that the software functions as intended and meets the defined quality and safety criteria.

Yet another example could be a project milestone, e.g. "Heart rate probing system 2.0". The approval of this milestone is contingent upon the successful approval and release of the 2.0 version of the "Heart Rate Probing System". This strict dependency on the approval and release of the 2.0 version ensures that all necessary enhancements, modifications, and quality assurance measures have been implemented to meet the project's standards and objectives.

1.2. Scope

This document defines tasks, activities, procedures, resources, responsibilities, and deliverables related to software development using milestones of the Product.

1.3. Field of application

This plan was developed to support the creation, release, and maintenance of the Product.

1.4. Compliance

This plan was developed in compliance with ISO 13485, IEC 62304, ISO 14971, and 21 CFR Part 820.

1.5. Tools

Tools used to develop and release a product with Ketryx Lifecycle Management are provided in . The release process is described in detail in .

2. Terms and definitions

For the purposes of this document, the terms and definitions given in U.S. QSR (21 CFR Part 820), ISO 13485, and IEC 62304:2006-AMD1 apply. Where contradictory, IEC 62304 and ISO 13485 prevail.

3. Process activities

To develop a new version of the Product using milestones, the following activities are performed.

3.1. Activity 1: Defining milestones

To create a new version or select an existing unreleased version where milestones need to be defined, proceed as follows:

On the Versions and Releases page, locate the option to create a new version.
Click on the Create Version button to initiate the creation process.
Alternatively, if there are existing unreleased versions available, click on the desired version to select it.

To configure milestones for a project, follow these instructions:

Ensure that you have the necessary permissions to manage the project. Only authorized users will have access to the milestone management functionality.
In the sidebar menu, find and select the Milestones option.
By navigating to the Milestones section, you will be presented with the milestone configuration screen.

Please note that access to the Milestones option in the sidebar menu is granted to users with the appropriate project management privileges. If you do not see the Milestones option, kindly contact your administrator to obtain the necessary permissions.

There are two types of milestones: configuration item and project milestones. Regardless of type, they have blocking mode option to prevent approval of items in subsequent milestones until the blocking milestone has been approved. Milestones lacking a blocking mode serve the purpose of tracking and organizing efforts. However, it is adviced to adhere to the sequential approval of milestones, irrespective of whether the preceding milestone is designated as a blocking milestone (this will not affect the approval of non-blocking milestones).

Configuration item (Requirement, Software Item Specification, etc) milestones require all configuration items of a certain type to reach a controlled state before work on the next milestone can start. For Requirements and Software Item Specification configuration items sub-types can be selected to further narrow down the specific types of items that need to be approved before being able to approve the milestone. By default, when not selecting a sub-type, all sub-types are required to be approved.

Project milestones require a specific project's version to reach a released-state before work on the next milestone can start.

For both types of milestones, the required document types can be configured that need to be generated and approved before a milestone can be approved. By default, no documents need to be generated or put into a controlled state.

A milestone document is a great way to gather evidence (e.g. requirements) at the point of a milestone approval.

Note that only projects that have a version can be selected as a project milestone. If a project does not have a version, it will not be available for selection as a project milestone. Versions can be created on the Releases page.

3.1.1. Example: Defining a milestone for the Requirement configuration item type

Click on the Add Configuration Item milestone button to initiate the milestone creation process
Enter a meaningful name for the milestone, such as "System Requirements Specification Generation"
Select the Requirement item type from the available item type options (selected by default)
Within the milestone configuration, locate the sub-type options for Requirement items

The result will look like this:

If there are additional milestones to configure for the repeat the steps above as necessary. Customize the milestone names, configuration options, and document generation requirements based on your specific project needs.

3.2. Activity 2: Tracking milestone progress

Once milestones have been successfully configured, it is essential to monitor their progress to ensure product milestones are met on time. To facilitate this, Ketryx provides a dedicated detail page for each milestone, where progress can be tracked effectively. On the milestone detail page, you will find comprehensive information regarding the milestone's objectives, deliverables, and associated tasks.

As milestones are created and configured, they are automatically added to the release checklist, providing a consolidated view of the project's progress towards release readiness.

Milestones can have one of the following statuses:

Open. A milestone with this status will be ready for approval as soon as all approval conditions have been met.
Ready. A milestone with this status implies that all milestone conditions have been met. This milestone can be approved.
Approved. A milestone with this status implies that all the conditions for this milestone have been met and the milestone has been approved.

To see the progress of an individual milestone, follow these steps:

On the Releases and versions page locate the version for which milestones have been configured
Versions that have milestones configured will have an additional milestone progress indicator displayed on top of the release dashboard page, showing all milestones and their status
Navigate to the milestone detail page by clicking on a milestone

The milestone detail page serves as a comprehensive source of information regarding each milestone within the development cycle. It provides valuable insights into the milestone's configuration, including the associated item type and any configured sub-types. Furthermore, it highlights the configuration items or project that must be placed in a controlled state prior to approving the milestone.

Milestones are accompanied by their own dedicated checklist, which outlines the necessary steps and tasks that must be completed before the milestone can be approved. This checklist operates in a similar manner to the release checklist, ensuring that all required actions have been executed and verified.

3.3. Activity 3: Milestone meeting notes

Ketryx provides the capability to create, archive, and manage meeting notes for milestones on a milestone's detail page. This allows for the documentation of discussions, decisions, and any relevant information related to milestone progress and approvals. The following guidelines explain the details and user flow for handling meeting notes effectively.

3.3.1. Creating meeting notes

As long as the milestone is not approved, users belonging to any of the milestone approval steps possess the authority to add or archive milestone review meeting notes. These meeting notes should include essential details such as participant names, meeting date and time, and the content of the meeting discussion. It is important to note that meeting notes are optional for milestone approval. Users have the ability to create one or more meeting notes associated with the milestone. Approving a meeting note requires an electronic signature.

3.3.2. Archiving meeting notes

Users have the option to archive existing meeting notes, given that the milestone has not been approved. Archiving meeting notes can be useful, especially if a milestone has been approved but requires re-approval. Prior to initiating the re-approval process, users may choose to archive meeting notes associated with the milestone.

3.3.3. Restrictions on archiving meeting notes

If a milestone has been frozen as part of a version release, neither archiving nor adding new meeting notes is permitted. This limitation ensures the integrity of milestone-related information within the frozen release.

Below is an example of an approved meeting note with the option to add more.

3.4. Activity 4: Approving a milestone

To approve a milestone, the following rules apply:

The configuration item milestone type requires all items of a specific configuration item type to be controlled before it can be considered approvable. Specifically, the Requirement and Software Item Specification types allow for additional filters to be applied based on their respective sub-types.

The project milestone type is dependent on a specific version of a project, belonging to the same organization, being approved and released. Before considering the milestone as approvable, it is essential to ensure that the designated project version has undergone the necessary approval and release processes.

Regardless of the milestone type, the following rule applies to both configuration item and project milestones: A milestone may be configured to generate unique documents, similar to release documents. If such configuration is implemented, the milestone can only be approved when all milestone-specific documents have been generated and subsequently approved.

Once all conditions are met, a milestone can be approved on its detail page by all users that are part of approval steps that are required according to the project's milestone approval rules.

3.5. Activity 5: Revoking / Re-approving a milestone

Once a milestone has obtained approval, it is important to understand that this approval status can be revoked under specific circumstances. The milestone's approval status may be invalidated if any of the following conditions occur:

Loss of controlled state: If any item associated with the milestone has been changed, even if put back into the controlled state later on, the approval status of the milestone will be marked as outdated. This emphasizes the significance of maintaining proper control over all relevant items to ensure the integrity of the milestone's approved status.
Loss of approved preceding milestone: If a preceding milestone, which contributed to the approval of the current milestone, loses its approved state, the subsequent milestone will be marked as re-approvable. This interconnectedness underscores the importance of maintaining the approved status of preceding milestones to ensure the validity of subsequent approvals.
Manual invalidation of approvals: In addition to the conditions mentioned above, milestone approvals can also be manually invalidated by authorized personnel. In certain situations where significant changes or unforeseen circumstances arise, it may be necessary to manually invalidate the approval status of a milestone. This discretionary action ensures that milestones are re-evaluated and reapproved in light of the new information or circumstances, maintaining the accuracy and appropriateness of the project's milestone approvals. Manual invalidation of approvals provides an additional layer of control and flexibility in managing milestone statuses, allowing for adjustments and reassessments as needed throughout the project lifecycle.

In either of these cases, the milestone that has had its approval status revoked will require re-approval. This process ensures that any changes or inconsistencies in the controlled state of items or the approval status of preceding milestones are promptly addressed and properly approved once again.

3.6 Activity 6: Managing milestone configurations

By utilizing the milestone configuration page effectively, users can add, remove, and rearrange milestones in accordance with their significance and order. Additionally, the option to load previous milestone configurations from other projects within the same organization enhances efficiency and consistency in milestone management.

3.6.1. Adding milestones

To add milestones to the project, follow these steps:

On the milestone configuration page, click on the Add Project milestone or Add Configuration Item milestone button
Provide the necessary details and specifications for the new milestone, such as the milestone name, description, and associated criteria
Add an optional change note and save the changes to add the milestone to the configuration

3.6.2. Removing milestones

To remove a milestone from the configuration, follow these steps:

On the milestone configuration page, locate the specific milestone you wish to remove
Click on the trash-can icon for removing milestones
Confirm the removal action when prompted to ensure the milestone is removed from the configuration

3.6.3. Changing milestone order

To change the position or order of milestones, follow these steps:

On the milestone configuration page, locate the specific milestones you wish to reposition
Click on the arrow icons next to each milestone to move the milestones up or down in the desired order
Save the changes to finalize the new milestone order

By using the arrow icons, users can easily modify the order of milestones according to their desired sequence. This enables precise control over the arrangement of milestones to accurately reflect the project's progression. Remember to save the changes to ensure the updated milestone order is successfully applied.

3.6.4. Loading milestone configurations

To load milestone configurations from other projects within the same organization, follow these steps:

On the milestone configuration page, locate the option for loading previous configurations in the right side bar
Click on Load milestones configuration
Choose the desired project from which you wish to import the milestone configurations
Confirm the action to load the selected milestone configurations into the current version

3.6.5. Browsing the milestone configuration history

On the milestone configuration page, a convenient section is provided in the right sidebar where all historic changes made to the milestone configurations are listed. This section allows the timeline of modifications on the milestone settings to be tracked and reviewed. Each line in the history list includes an optional change note, the exact date and time when a change was made.

To easily identify the currently active version of the milestone configurations, the system prominently displays "(active)" next to the relevant entry. This indicator ensures that the most up-to-date milestone configuration can be distinguished from previous versions.

If there are additional notes associated with a specific milestone configuration change, an information icon is displayed alongside the corresponding line in the history list.

Clicking on a row provides access to the associated milestone configuration change, offering further insights and context regarding the modification.

By utilizing the historic changes section, valuable visibility into the evolution of milestone configurations over time is provided. Transparency and traceability are enhanced, enabling the accurate recording of milestone adjustments for future reference and audit purposes.

Example of a milestone configuration change history:

TestRail

Guide on the Ketryx integration with TestRail

1. Introduction

Ketryx provides seamless integration with TestRail, enhancing compliance and streamlining the management of test cases and requirements. This integration is purpose-built to

align your TestRail workflows with industry standards such as ISO 13485, IEC 62304, and ISO 14971,
synchronize data between Ketryx and TestRail to maintain consistent electronic records,
provide traceability from requirements to test cases and test results, and
enforce workflows that incorporate electronic approvals and audit trails for robust compliance.

This guide offers step-by-step instructions for setting up and utilizing the integration, and answers to frequently asked questions.

2. Setting up the integration

To integrate Ketryx with TestRail, please ensure you have administrative permissions on both platforms. With the required permissions in place, proceed with the following steps:

Note: the initial connection should be made from a service account (e.g. [email protected]), which should have TestRail administrator privileges. It should NOT be someone's personal account, even if that person is an administrator.
Rationale: Whoever sets up the initial connection to Ketryx via the API will be credited with making the changes that Ketryx makes in TestRail. The biggest problem this creates is the danger that once the original person who sets up Ketryx leaves the company, typically, that person's IT credentials are revoked. In turn, this would revoke Ketryx's access to TestRail and cause the Ketryx/TestRail integration to stop working. (No data would be lost, but this is very annoying and potentially difficult to troubleshoot.)

Log into TestRail.
Make sure Enable API is active on the Administration->API page.
Navigate to your settings and API KEYS.
Create a new API KEY.

After setting up the connection, test cases and results in TestRail can be seamlessly linked to requirements and other items within Ketryx.

3. Frequently Asked Questions

3.1. Q: How does Ketryx synchronize TestRail data?

Ketryx synchronizes the following data between the platforms:

Test Cases: Test cases in TestRail are imported into Ketryx as Test Cases (TEST_PROTOCOL) items.
Test Executions: Test executions in Ketryx are generated based on the Run + Result combination in TestRail, creating an item of type TEST_EXECUTION in Ketryx.
Test Plans: Test plans in TestRail are imported into Ketryx as Test Plan (TEST_PLAN

3.2. Q: Can I customize how Ketryx maps TestRail fields?

Yes. Ketryx provides that enable you to define how TestRail fields map to Ketryx items. For instance, you can configure TestRail’s Template or Result fields to specific Ketryx attributes.

3.3. Q: What happens to deleted test cases or results in TestRail?

When a test case or result is deleted in TestRail:

It is marked as deleted in Ketryx but remains linked for traceability.
No further updates are synchronized unless the test case or result is reactivated in the case of soft deletion.

3.4. Q: How do I handle changes in TestRail schema (e.g., custom fields)?

If you add custom fields in TestRail, you can update the Ketryx configuration to recognize them using the setting.

3.5. Q: How do I handle versions?

There are multiple ways to handle versioning between Ketryx and TestRail. These options are prioritized in descending order:

Custom Field Mapping: Create a custom field in TestRail and map it to introducedInVersion in Ketryx.
Version Field: Use the default version field in TestRail results.
Parent Milestone: If the milestone name in TestRail matches the , it will be used as the version.

3.6. Q: Which types of TestRail projects are supported?

Ketryx supports the following types of TestRail projects:

Single Repository for All Cases (Recommended): This is fully supported without additional configuration and offers seamless synchronization.
Single Repository with Baseline Support: Supported with custom configuration to map baselines effectively to Ketryx structures.

These options ensure compatibility and flexibility when integrating different TestRail project setups with Ketryx.

3.7. Q: What to connect webhooks?

Configuring the webhook URL in TestRail:

To enable real-time synchronization between TestRail and Ketryx, configure a webhook in TestRail pointing to your Ketryx instance:

In TestRail, navigate to Administration > Integrations > Webhooks
Click Add Webhook
Set the webhook URL to: [your Ketryx instance]/api/integrations/testrail/webhook

Webhook payload format:

When configuring webhooks in TestRail to notify Ketryx of changes, the webhook payload should follow this format:

Payload fields:

event_type (required): The type of event that triggered the webhook
event_created (required): Timestamp when the event occurred
data.project_id (required): The TestRail project ID

When an event is received, Ketryx will schedule a project update to synchronize the changes from TestRail.

Testing the webhook:

To verify that your webhook is configured correctly, you can send a test payload with event_type set to "test":

This test event will return a success response (HTTP 200) without triggering any data synchronization, allowing you to verify connectivity.

4. TestRail Configuration

4.1. Overview

The TestRail settings in Ketryx enable users to configure how TestRail-specific fields map to Ketryx items. This mapping ensures accurate data synchronization between the two systems, maintaining traceability and compliance. These configurations are crucial for integrating test cases, test executions, and test plans into Ketryx workflows seamlessly.

The configuration includes four primary mapping types:

TestRail field type mapping: Matches TestRail fields to Ketryx attributes for test cases, test executions, and test plans.
TestRail status mapping: Aligns TestRail statuses with Ketryx item states.
TestRail result mapping: Converts TestRail test result statuses to Ketryx result states.
TestRail work item relations mapping: Maps TestRail fields to create relational links in Ketryx with items in external systems.

4.2. TestRail field type mapping

The TestRail field type mapping defines how TestRail fields (e.g., custom fields) are translated into Ketryx attributes for various entities such as test cases, test executions, and test plans.

All custom fields from TestRail must be prefixed with custom_ in the configuration.

Example configuration

TEST_PROTOCOL: Maps fields for test case templates and default configurations.
TEST_EXECUTION: Maps fields for test execution data.

Refer to for a complete list of built-in fields available in Ketryx.

4.3. Mapping Fields to Extra field names

It is possible to map fields to Extra field names. To do this, assign a label key in the TestRail field type mapping and use the same key in the Extra field names setting.

Example:

TestRail field type mapping:

Extra field names:

4.4. TestRail Status Mapping

The TestRail status mapping aligns TestRail status names with Ketryx item states such as OPEN, REOPENED, IN_PROGRESS, RESOLVED, or CLOSED.

Example configuration

Backlog in TestRail maps to Open in Ketryx.
Done in TestRail maps to Resolved in Ketryx.

Refer to for a complete list of Ketryx statuses.

4.5. TestRail Result Mapping

The TestRail result mapping converts TestRail test result statuses to Ketryx result states like PASSED, FAILED, or PASS_WITH_EXCEPTION.

Example configuration

Passed in TestRail maps to Pass in Ketryx. Failed in TestRail maps to Fail in Ketryx.

Refer to for a complete list of Ketryx result states.

4.6. TestRail work item relations mapping

The TestRail work item relations mapping links TestRail fields with items in external systems (e.g., Jira, Git, ...). This ensures test cases and executions are correctly related to development or work item-tracking items.

Example configuration

sourceField: The field in TestRail to map.
relationType: The type of relation in Ketryx (e.g., AFFECTS, RELATES_TO).
targetSystem: The external system where the target item resides (e.g., Jira, TestRail, Git).

Refer to for a complete list of Ketryx relation types.

Note: When Jama is selected as the "targetSystem", the "sourceField" section must include the pre-fix "custom_case_" followed by your custom field in order to map Jama items to TestRail test cases.

4.7. TestRail sync configuration

Recommendation: For best results, configure sync filters at the organization level before initiating the first synchronization to limit the scope and avoid syncing irrelevant data. After the initial sync, you can always adjust the configuration at the project level to include more items as needed for flexibility.

The TestRail sync configuration allows advanced control over which TestRail items are synchronized with Ketryx and under what conditions. This is useful for teams that want fine-grained control over what data is imported based on naming patterns, baseline types, completion status, and sync scope.

This configuration consists of three main sections:

syncFilter

Controls which items are included in the sync using regular expression patterns.

milestonePattern: Regex to match milestone names (e.g., 'v\\d+\\.\\d+', 'release-.*', 'sprint-\\d+', '.*')
subMilestonePattern: Regex to match sub-milestone names. This setting only works when syncScope is set to 'Milestone' and milestonePattern is also configured. Use '.*'

syncOptions

Controls how completed items are handled and whether to include the master baseline.

includeMasterBaseline: true includes the master baseline; false skips it.
includeCompletedItems: Set which completed items to include or skip: milestones, baselines, runs, plans: Each can be true or false

syncScope

Controls the overall sync scope:

'All': Syncs all items, regardless of milestone.
'Milestone': Syncs only items associated with milestones that match milestonePattern.

editTestResultWindow

Controls the edit window for test results, which should align with your TestRail configuration:

This setting should match your TestRail configuration found under: Admin > Site Settings > User Interface > Editing Test Results. The default value is '1day' to match TestRail's default edit window.

Available options:

'disabled': No editing allowed after test execution
'1min': 1 minute edit window
'2min': 2 minutes edit window

Example configurations

Default configuration:

This configuration:

Syncs all milestones, sub-milestones, and baselines
Includes master baseline
Includes all completed items
Syncs everything regardless of milestone associations

Version-Specific configuration:

This configuration:

Only syncs version-style milestones (e.g., v1.0, v2.1) and all their sub-milestones
Only includes the master baseline
Skips all completed items
Only syncs milestone-related items

Sub-Milestone Filtering configuration:

This configuration:

Only syncs milestones that match the pattern release-.* (e.g., release-v1.0, release-v2.1)
Only includes sub-milestones that match the pattern sprint-\\d+ (e.g., sprint-1, sprint-2)
Includes all baselines

For more advanced filtering scenarios, consult the TestRail sync configuration setting in your organization's configuration panel or integration setup screen.

For more detailed instructions and advanced configuration options, please refer to the section of the documentation.

Jama

Guide on the Ketryx integration with Jama

1. Introduction

Ketryx provides seamless integration with Jama, enhancing compliance and streamlining the management of configuration items and releases. This integration is purpose-built to

align your Jama workflows with industry standards such as ISO 13485, IEC 62304, and ISO 14971,
synchronize data between Ketryx and Jama to maintain consistent electronic records,
provide traceability across requirements and to test cases and test results, and
enforce workflows that incorporate electronic approvals and audit trails for robust compliance.

This guide offers step-by-step instructions for setting up and utilizing the integration, and answers to frequently asked questions.

2. Setting up the integration

To integrate Ketryx with Jama, please ensure you have the REST API enabled in your Jama instance, and you have administrative permissions on both platforms. If so, proceed with the following steps:

Note: the connection should be made from a service account (e.g. [email protected]), which must have a named Creator license and needs to have Jama administrator privileges. It should NOT be someone's personal account, even if that person is an administrator.
Rationale: Whoever sets up the connection to Ketryx via the API will be credited with making the changes that Ketryx makes in Jama. The biggest problem this creates is the danger that once the original person who sets up Ketryx leaves the company, typically, that person's IT credentials are revoked. In turn, this would revoke Ketryx's access to Jama and cause the Ketryx/Jama integration to stop working. (No data would be lost, but this is potentially difficult to troubleshoot and easily avoidable.)

Create API credentials
As an organization admin, log into Jama.
1. Make sure to have a named Creator license (ADMIN > Users).

After setting up the connection, Ketryx projects can be created and linked with one Jama project each.

Jama has announced a breaking change regarding licensing. As of November 2025, API access requires a named Creator license. Please make sure to verify the user used for the Jama connection has the correct license before that. Otherwise, the Ketryx integration will not be able to pull information from Jama, hence items will become out of sync.

If you wish to change the user used for the Jama connection, please refer to .

3. Frequently Asked Questions

3.1. Q: How does Ketryx synchronize Jama data?

By default, Ketryx synchronizes the following data between the platforms:

Defect: Any item of a Jama item type used as Defect is imported into Ketryx as Anomaly item.
Test Cases: Any item of a Jama item type used as Test Case is imported into Ketryx as Test Case item.
Test Runs: A Jama Test Run is mapped to a Test Execution in Ketryx.

Default mapping and customization

Aside from these well-known item types Ketryx also comes with default mappings which can be customized. Such default mappings include, but are not limited to:

IU (Intended Use): Mapped to Requirement of requirement type Intended use.
SOFTW (Software Requirement): Mapped to Requirement of requirement type Software system.
SOFTWI (Software Item): Mapped to Software Item.

Hierarchical Structure Items

Ketryx can import and map Jama's hierarchical structure items (Components, Sets, and Folders) and maintain their relationships.

Component, Set, and Folder items can be mapped to custom items in Ketryx.

The Jama item location can be mapped to Ketryx relationships, which can be mapped to Ketryx relationships using the relationship key ketryx:JAMA_HIERARCHY_PARENT. For details on how to enable mapping of these items, please refer to Section .

To override or add custom item type mappings, use .

3.2. Q: Can I customize how Ketryx maps Jama fields and relationships?

Yes. Ketryx provides that enable you to define how Jama fields map to Ketryx items. For instance, you can configure a Jama release field to map to Ketryx versions.

As with item types, Ketryx comes with default mappings for common Jama fields, such as but not limited to Title, Description and Test Run Status as well as default relationship mappings, e.g., Validation is mapped to Tests in Ketryx.

3.3. Q: How do I handle changes in Jama schema (e.g., custom fields)?

If you add custom fields in Jama, you can configure Ketryx to recognize them using the setting, either as a default for all item types or specifically for a given type (category).

3.4. Q: What happens to deleted items?

When any item is deleted in Jama it is marked as deleted in Ketryx but remains linked for traceability.

3.5. Q: How do I handle approvals?

Ketryx has a fully customizable supporting Part 11 compliant electronic signatures. Approvals can be required for specific Jama item types and statuses. Once an item is fully approved, a status transition can be triggered, which can also be synchronized back to Jama. Further, the Jama item locking mechanism can be invoked, too.

The Jama integration also supports accepting a given Jama item status as approved. In this case, the Jama item does not need to be re-approved in Ketryx, thus supporting Jama-only approval workflows.

Ketryx will comment on items in Jama as they move through the approval workflow so that users have context. These comments will be made automatically upon approval, , or .

Refer to the for details.

3.6. Q: How do I handle releases?

There are multiple ways to handle releases in Jama, thus there are multiple options how to set up the integration. These non-prioritized options are currently supported:

Default release field: Use Jama's built-in default release field and map it to introducedInVersion in Ketryx.
Custom release fields: Use one, or ideally two, custom release1 and release2 fields and map them to introducedInVersion and obsoleteInVersion, respectively, in Ketryx.

Note that, whichever method is used, whenever release changes in Jama, it will also change in Ketryx and potentially invalidate the item.

Ketryx infers version numbers from the Jama release's or picklist option's name. If a version with the same version number as a Jama release already exists in Ketryx, the Jama release will be associated with it. To have Jama determine version properties, such as the name, set accordingly.

3.7. Q: How can I use the Jama item hierarchy in Ketryx?

Jama structures its items in a hierarchical structure made of items of the types "Component", "Set" and "Folder". In Ketryx, users can map these to custom items and relations and use them like normal.

Based on that, users can reflect that hierarchy in Ketryx-generated documents by setting up a custom traceability matrix and use the grouping-feature of the document templating system. The full example can be found in .

3.8. Q: How do I update the Jama connection credentials?

Jama connections are identified by their URL, i.e., you can add a new connection with the same URL as the previous one and provide the updated credentials. This will update any existing connection pointing to the same Jama instance.

If you delete and recreate the connection or add an entirely new Jama connection with a different URL, those will be treated as a new connection, i.e., existing projects connected to a now deleted Jama connection will stop to sync.

Please note that the credentials you provide should have admin permissions to have full access to read Jama users and type configuration and for the integration to deal with item locks.

4. Jama Configuration

4.1. Overview

The Jama settings in Ketryx enable users to configure how Jama items map to Ketryx items. This mapping ensures accurate data synchronization between the two systems, maintaining traceability and compliance. These configurations are crucial for integrating requirements, defects, tests, releases etc. into Ketryx workflows seamlessly.

The configuration includes the following:

Jama item mapping: Matches Jama item types to Ketryx item types including default types such as Test Plan but also your own custom types.
Jama item status mapping: Aligns Jama statuses with Ketryx item states.
Jama item relationships mapping: Maps Jama fields to create relational links in Ketryx with items in external systems.
Jama field type mapping

As organization admin, you can find your Jama item types, their fields and your relationship types in the Jama ADMIN center.

Furthermore, general advanced settings can be relevant, too, such as Approval workflow to enable approvals, optionally with status transitions. These are done in Ketryx and a sync back to Jama.

Refer to for a complete list of available settings.

4.2. Jama item mapping

The Jama item mapping defines how Jama item types are translated into Ketryx item types, e.g., a type Use Case in Jama would become a Requirement of requirement type Use case.

Example Configuration

jamaItemType: The item type in Jama (use the Key or Display name).
itemType: The item type in Ketryx; either a system type, e.g., REQUIREMENT or the display name of a custom item type as specified in the .
fieldValues: Bind static values based on the Jama item type, e.g., specifying a

To disable a default mapping, null can be specified as the target field or target relationship or even as itemType. The former means specific fields and relationships will not be read in future syncs, i.e., affected items will receive new records. A null-item type means the entire item is not read anymore, i.e., will not receive any updates in future syncs. If items of that type had been synced before, and you do not want to keep them in your project, you may choose to exclude them.

Refer to and for a complete list of built-in types and fields available in Ketryx.

4.3. Jama item status mapping

The Jama item status mapping aligns Jama status names with Ketryx item states such as OPEN, REOPENED, IN_PROGRESS, RESOLVED, or CLOSED.

Example Configuration

Backlog in Jama maps to Open in Ketryx.
Done in Jama maps to Resolved in Ketryx.

Refer to for a complete list of Ketryx statuses.

4.5. Jama item relationships mapping

Note, that since 2.11.3, this setting has been superseded by the more granular, type-specific Jama item mapping settings.

The Jama item relationships mapping maps relationships from Jama to Ketryx relationship types. This mapping also works with custom relations.

Note, that the hierarchical item structure in Jama is always mapped to has parent relationships. Additionally, for more flexibility, a relationship type for parent-relations can be used in Jama and mapped to Ketryx.

Example Configuration

Custom relations example

Given a custom relation with ID SW_TO_RQ:

Related to relations in Jama map to Relates to in Ketryx.

The following relations are mapped by default:

Related to: Relates to
DI - DO: Fulfills
Validation and Verification: Tests
Change Request: Affects

Refer to for a complete list of Ketryx relation types.

4.6. Jama field type mapping

Note, that since 2.11.3, this setting has been superseded by the more granular, type-specific Jama item mapping settings.

The Jama field type mapping defines how Jama fields (e.g., custom fields) are translated into Ketryx attributes. This is done globally across all item types.

To provide static values based on an item type, refer to .

Example Configuration

release1/release2: Maps Jama release fields to a corresponding Ketryx version.
deferFix: Maps a (rich) text field named deferFix to rationaleForDeferringResolution.

The following standard Jama fields are always mapped to corresponding Ketryx fields:

Name
Description
Test Case Steps
Test Run Steps

The following field mappings are included by default but can be overridden:

Status
Assigned to

Refer to for a complete list of built-in fields available in Ketryx.

4.7. Map the Jama item hierarchy aka location to Ketryx document templates

Note, that this is an advanced configuration. If a configuration is not avalable or if you need help setting this up please do not hesitate to .

For the Ketryx organization configure
1. a custom item type for Jama folders
1. and a custom relation for the Jama location.
For the Ketryx organization or project settings configure

For more detailed instructions and advanced configuration options, please refer to the section of the documentation.

MAN-07 Traceability

Manual for the Ketryx traceability matrix and its traceability mechanism

1. Introduction

This manual describes the setup and processes for interpreting, maintaining and verifying the traceability matrix of a Ketryx project.

1.1. Terms and definitions

RTM: Requirements Traceability Matrix.
Specification: A Ketryx specification item, namely Software Item- and Hardware Item Specifications. A specification fulfills a Requirement with relevant details for the concrete implementation
Requirement: A Ketryx requirement item. A Requirement may have a requirement type assigned to make them more specific, such as Use case requirement types

2. Traceability Modes

The traceability mode dictates certain traceability behavior and rulesets in the traceability matrix that are derived from the Ketryx project schema configuration.

2.1. System-Requirement and Specification Mode

Enabled with Ketryx project schema: Software design and development, Software and hardware design and development, Full schema including Post-Market Surveillance

The System-Requirement and Specification mode is the strictest mode available in Ketryx. The following constraints need to be satisfied for the traceability matrix to be considered fulfilled:

Each detected Use case Requirement requires at least one related Requirement (either another Use case or any other Requirement type)
Each Requirement requires at least one Software Item or Hardware Item Specification, and a Test Case (= validation test)
Each Specification requires at least one Test Case (= verification test)

2.2. Requirement-Validation-Only Mode

Enabled with Ketryx project schema: Requirement validation

The Requirement-Validation-Only mode was designed for (Software) systems with a primary focus on tracing Requirements to corresponding Test Cases and their subsequent Test Executions. Software/Hardware Item Specifications may be part of the requirements and specification architecture, but are not considered in the traceability check of the resulting traceability matrix.

The following constraints need to be satisfied for the traceability matrix to be considered fulfilled:

Each detected Use case Requirement requires at least one related Requirement (either another Use case or any other Requirement type)
Each requirement requires at least one Test Case (= validation test)
Each Test Case requires at least one manual and/or automated Test Execution. Depending on the project configuration, a manual Test Execution may be mandatory

3. Traceability Page

The Traceability (RTM) page can be accessed via the Traceability navigation item within the project sidebar and will display the RTM for a given version.

The page displays a paginated set of all traceability rows for a given primary item (Use cases, Design inputs, Design outputs, Verification, Validation, etc). Primary items represent a distinct item in the system that are traced to its corresponding relations.

3.1. Test Case Categorization

A Test Case may test a Requirement and/or a Specification item. Depending on the tested item, a Test Case may be qualified as a Verification test (testing a Specification), Validation test (testing a Requirement/Use Case), or both (testing a Specification and Requirement/Use Case).

Important: Due to legacy reasons, in Jira, a Test Case item will allow members to set a test type. Please note that the traceability page will ignore this Jira field and will only consider the item's trace relations when categorizing into Verification and Validation tests. In future versions of Ketryx, the test type field will not distinct between Verification/Validation tests but rather focus on the actual test kind (Regression, Unit, Integration, System, etc).

3.2. Excluded Test Cases

A Test Case may be excluded from a test plan within Ketryx' test management page. A Test Case not included or explicitly excluded from a version's test plan will be marked as "Not included in test plan" in the traceability page. It doesn't require any Test Execution, nor a Test result, and doesn't need to be controlled for the RTM to be fulfilled.

3.3. Automated Tests

Test results may be tracked through automated CI builds, and may be testing Requirements, Software/Hardware Item Specifications, or Test Cases. If the automated test is related to a Test Case, it will be displayed within the Test Case's cell's "Automated tests" list.

If the automated test is testing a Requirement or Specification item, the test will be displayed as a standalone cell marked with an AT abbreviation. This separation is important — automated tests linked to a Test Case cannot be explicitly approved until an equivalent manual Test Execution has been created. If the Ketryx project is configured to enforce manual tests on automated tests, the Traceability page will notify the user that a manual test execution is missing for a given Test Case.

3.4. Showing item traces

A traceability row may contain multiple items that represent different traces within the different columns. A member may highlight individual traces for a given item by clicking the Tracing button. It will highlight all items that are directly related to the selected item.

Note: An item may have an indirect relation to a Use case via a parent of a parent relationship. In this case, the tracing function will only highlight Use cases that are directly related to the selected item.

3.5. Using the Traceability Check filters

Ketryx offers pre-defined traceability check metrics to allow members to quickly solve RTM errors and get to a releasable state.

Selecting a traceability check will activate the corresponding filter, showing all the rows that contain a cell matching the filter condition.

The following traceability checks are available (depending on the traceability mode):

Use cases covered by a design input: Filters for all rows containing at least one Use case that is not covered by a design input (Requirement)
Design input covered by a design output: Filters for all rows containing at least one design input (Requirement) without a proper relation to a design input (Specification). This check will not be available in the Requirement-only mode
Verification, design outputs covered by Tests: Filters for all rows containing design inputs (Specification

3.6. Fixing Traceability Errors

While verifying a version's RTM, errors will occur that require to be fixed for the RTM to be approvable for a release.

The following list gives a list of errors and potential fixes:

Requirement missing: The erroneous Use case has no child Requirement. Fix: Create or identify the relevant Requirement and add the erroneous Use case to its "Parent requirements" field
Specification missing: The erroneous design input (Requirement) has no fulfilling Specification item defined. Fix: Create or identify the relevant Software/Hardware Item Specification and set its Fulfilled requirements field to the erroneous Requirement

3.7. Dangling items

The traceability matrix makes sure that all item relation constraints are fulfilled, but based on the selected primary column, there may be independent items that may not correspond to the primary item type (so-called "dangling items").

Dangling items are listed in separate rows at the first page of the Traceability table (one row per column type), with the primary column being empty.

Please note that the dangling item rows will also contain its direct item relations, e.g. Verification Test Cases or other entities like directly linked Use cases.

Note: Depending on the selected primary item it is very likely dangling items will be displayed. As long as they don't yield any traceability error, they are considered safe from a traceability fulfillment perspective.

3.8. Approving the Traceability matrix on the Traceability page

Note: This functionality needs to be enabled via the .

The Traceability page allows users belonging to any steps of the Release approval type to approve a fulfilled traceability matrix for a selected version via a dedicated status message. When approving the traceability matrix, the given version's Traceability Matrix release document will be (re-)generated and approved.

The relations to and from a particular item can be traced in the traceability widget. It offers two distinct views, accessible through tabs, for analyzing these relations: a graphical layout and a table format.

The traceability widget will be shown on connected systems such as Jira, as well as on the Item record detail page.

Note that on the Item record detail page, the data displayed in the widget always reflects the record corresponding to the selected version. Changes in connected systems will only be reflected after the next sync of the item with Ketryx.

As a result, any updates made in connected systems will appear only after the item is synced with Ketryx. When viewing the widget on the Item record detail page, keep in mind that it reflects the record and its related data for the selected version—not necessarily the record currently being viewed.

4.1. Graph tab

4.1.1. Layout

The graphical layout provides a visual representation of the primary item and its associated items, referred to as secondary items, for a selected version. The secondary items are grouped according to their relation type and are further organized into two categories:

Design inputs - displayed on the left side of the graph
Design outputs - displayed on the right side of the graph

In addition to displaying the primary item and its associated secondary items, the graph also includes sibling items of the primary item. Sibling items share the same relationship with the secondary item as the primary item does with that secondary item. For instance, if the secondary item is identified as the "parent" of the primary item, then the sibling items would be other "children" of that same secondary item.

There are 2 special cases: a risk item and a test case. If a risk item is a design output, risk controls are displayed along with the sibling items. Similar to risks, test executions are displayed along with the sibling items if a test case is a design output.

If required, the currently effective test execution (i.e., the most recent execution) of a test case can be visually marked. This feature is currently available only for manual test executions. Please contact Ketryx Support to activate this visualization.

4.1.2. Item display

The following item information is displayed: item type, source key, title, source system, item state, and, if applicable, safety risk class.

Removed items (e.g., the ones with the filled Obsolete in version field) are indicated with a dashed border.

4.1.3. Managing item relations

This widget enables the management of item relations by allowing the removal of relations, linking existing items, or creating and linking new items to the primary item. Relation editing can be enabled or disabled in the . When allowItemCreation is set to No, creation of new items through the widget is disabled. When allowItemEditing is set to No, linking and removal of existing items are disabled.

4.1.3.1. Creating a relation

To create a relation, click one of the “Add …” buttons. This action opens a form where it is possible to either:

link existing items via the ”Link an existing item” tab
create a new item and link it via the “Create and link a new item” tab

Note: At the moment, new relations can be added through the traceability widget, Jira fields, or Jira native links. However, Jira relation fields may not consistently display all relevant data. To ensure complete and accurate visibility, it is recommended to always use the traceability widget for viewing and editing relations.

4.1.3.2. Removing a relation

To remove a relation, hover over a link in the graph and click the remove button, represented by a cross icon.

4.1.3.3. Special cases

In some cases, all add and remove relation buttons are disabled if:

the record is not current (e.g., due to a locked record)
the selected version has been released
the item type is not editable (e.g., a document)

Non-editable items, such as Xray items, git-based items or items from other integrations (except for Jira), will not appear in the dropdown menu in the form if a reverse relation is created with them. In a reverse relation, the linked item serves as the source of the relation and is modified instead of the primary item. The removal of reverse relations with non-editable items is also not supported. When the primary item is non-editable, the creation and removal of forward relations are disabled. Additionally, when the primary item is an Xray item, the addition of executed tests or test executions are disabled.

4.1.4. Limitations

Note that the current version of the traceability widget has the following limitations:

Threat modeling is not supported
Creating reverse relations of custom relations is not supported
Customization of system relations is not supported
Effective / ineffective test executions are not supported

4.2. List tab

A table displaying traced items and their corresponding types of relations to the primary item is provided alongside the graph layout. This table lists relations both originating from the primary item and directed toward it.

4.3. Adding Ketryx Relations Between Items: Re-opening Closed Objects

4.3.1. Closed Item Relations

When a new Relation is created between two Closed (fully approved) configuration items using the Ketryx Traceability Widget, one of the items is immediately invalidated to a Resolved state. That item must then be re-reviewed and approved. The item that stores the Relation on its record is created will be invalidated. An example is provided below.

Additional information regarding the is available in the linked article. The "To" and "From" relationships for each configuration item type, are described in the “Traceability to other configuration items” section of each item’s Work Instruction, such as .

For example, for a Relation between a Requirement and a Test Case, the Test Case will always store that Relation on its item record (as seen in the 'Relations from this record' section of the item), and the Requirement will only show that Relation in the Traceability Widget. The rest of the rules regarding Relationship item storage for Requirements and Test Cases can be found in and .

4.3.2. To/From Relation Walkthrough

Below is an example of relating a Requirement to a Test Case, and showing how the Test Case will re-open due to the relation between the items.

Pre-Condition - 2 items, a Requirement & Test Case, are closed and unrelated to each other.

Step 1 - Create a Relation using the Requirements Traceability Widget using the 'Add test' button in the widget.

Step 2 - After the relation is created, the Requirement remains Closed, an entry is not added to the 'Relations from this record' section (see below for additional context), and the Relation appears in the Traceability Widget.

Step 3 - After the relation is created, the Test Case is forced back into a Resolved State or the invalidated state if you have configured a non-default workflow using the advanced setting. When the test case is forced back into the Resolved State, an entry is added to the 'Relations from this record' section, and the relation appears in the Traceability Widget.

Step 4 - Now to show the reverse, we can break the relation between the items. Approve the Test Case again to bring it back to a Closed state. Now we will recreate that Relation using the ‘Add tested item’ in the Traceability Widget, this time in the Test Case, and we can see that again, the Test Case is forced back into the Re-Opened, Resolved State. Looking at the Requirement, it is still Closed.

6. Download the Traceability Matrix Document

The Traceability Matrix Document can either be generated and downloaded as a release document (as described in ), or generated on demand for a selected version on the Traceability and Requirement tree page. The latter document can be generated either as a CSV or Excel file and will contain the following data:

Use case id: Unique identifier for a Use case related to the given Requirement
Use case title: The title of the Use case related to the given Requirement
Requirement ID: Unique identifier of the Requirement that's being traced

Note: The generated document aims to replicate the Traceability page content with primary column set to Design input as closely as possible as the format permits. If a Requirement has relations to multiple Use cases, there will be multiple rows of the same Requirement for each Use case.

7. Configuration

Ketryx allows the following customization for the Traceability feature and behavior

7.1. Enable/Disable Traceability check enforcement

Requires manage project permissions.

For the desired project, navigate to the Settings page
Under Release controls, enable or disable Require full traceability (enabled by default)

If full traceabily has been disabled, the version release page will not block a release if the traceability matrix hasn't been fulfilled.

Important: Please be aware that this setting will allow members to approve a release artifact that may be not be compliant with current regulations. It was designed to be an escape hatch, in case there's a special need to finalize an incomplete RTM for important reasons.

7.2. Customize the Traceability Matrix document

The Traceability Matrix document can be configured to omit certain columns and rename column names.

Refer to the page for details.

7.3. Customize the Traceability Matrix columns

Ketryx allows full customization for the displayed columns, column relationships / traces, traceability checks, including their corresponding error status messages, and more.

Refer to the the page for more details.

Vulnerability Management

Manual for the vulnerability management using Ketryx Software Supply Chain Management

1. Introduction

Vulnerability management is the process of identifying, evaluating, treating, and reporting on security vulnerabilities in systems and the software that runs on them. The process is a continuous cycle of discovery, prioritization, and remediation. Vulnerability management is integral to computer security and network security.

When developing medical devices following IEC 62304, vulnerability management becomes even more crucial. Medical devices often rely on Software of Unknown Provenance (SOUP) and Off-the-shelf (OTS) software components and dependencies, making them vulnerable to security risks. Proper vulnerability management ensures that potential vulnerabilities are identified and addressed, reducing the risk of security breaches and ensuring the safety and effectiveness of the medical devices.

Ketryx Software Supply Chain Management offers a vulnerability management module designed to assist users in monitoring vulnerabilities within their software supply chain. This module presents a centralized view of all vulnerabilities in the software supply chain, aiding users in prioritizing and remedying them.

1.1. Purpose

The purpose of this document instruct users on how to use the Vulnerability management module in Ketryx Software Supply Chain Management to manage vulnerabilities in the software supply chain.

1.2. Scope

This document describes the features and functionality of the Vulnerability management module in Ketryx Software Supply Chain Management.

2. Terms and definitions

The definitions of this document conform to the ones of ISO/IEC 27001, ANSI/AAMI SW96:2023, and AAMI TIR57:2016/(R)2019.

Acronym

Definition

3. Project setup

To use the Vulnerability management module, you need to have a project set up in Ketryx Software Supply Chain Management. If you don't have a project set up, follow the instructions in .

Once you have a project set up, you can start using the Vulnerability management module. The module is available in the SBOM > Vulnerabilities section of the project.

4. Manage vulnerabilities

The Manage vulnerabilities (available in the SBOM > Vulnerabilities section of the project) screen displays a list of all identified vulnerabilities in the software supply chain of the project. It is also possible to create, edit, and manage vulnerability impact assessments on this screen, as well as to create, edit, and manage manual vulnerabilities.

If the project contains transitive dependencies, the vulnerabilities of the transitive dependencies are also displayed. The vulnerabilities of the transitive dependencies can be expanded to view more information. For transitive dependency support, please refer to , as well as the manual on or .

The vulnerabilities list displays the following information for each identified vulnerability:

Title: The title of the vulnerability. Below the title, the vulnerable SOUP or OTS component is displayed. Clicking on the SOUP/OTS component will take you to the detail screen, where you can view more information about the component.
Reported on: The date the vulnerability was reported.
Severity: The severity of the vulnerability and its score.
Risks: The number of risks associated with the vulnerability, if any.

Columns can be sorted, filtered, resized and rearranged to suit your needs.

When hovering over a column header, an arrow icon will appear. Clicking on the arrow will sort the column in ascending or descending order.

To rearrange columns, click and drag the column header to the desired position.

To resize a column, hover over the right edge of the column header until the resize icon appears, then click and drag the edge to the desired width. Double-clicking on the edge will automatically resize the column to fit the content.

To filter, hide, or pin a column, hover over a column click on the three-dot (︙) icon in the column header and select the desired options.

4.1. Withdrawn vulnerabilities

Occasionally, vulnerability advisories (e.g., GitHub Security Advisories - GHSA) may be withdrawn, often because they are duplicates of other advisories or found to be incorrect.

Depending on your organization's settings, Ketryx can either hide these withdrawn vulnerabilities entirely or display them with a distinct "Withdrawn" tag in the Title column.

Expanding a withdrawn vulnerability will show details about the withdrawal, including the reason and the date it was withdrawn.

5. Manual vulnerabilities

For many ecosystems, Ketryx can automatically detect vulnerabilities by leveraging the GHSA (GitHub Security Advisory). However, for the product itself or certain OTS (Off-The-Shelf) software, Ketryx allows users to create and manage their own vulnerabilities.

5.1. Creating a manual vulnerability

To create a manual vulnerability, click on the Add vulnerability button on the above the table.

Clicking on the Add vulnerability button opens the manual vulnerability dialog.

Manual vulnerabilities can be created by populating the vulnerability details and then clicking the Add vulnerability button. The following fields are available:

Title
Introduced in Version
Obsolete in Version
Description

5.1.1. Manual vulnerability severity

Manual vulnerability severity is set by a severity level dropdown with an option to assess severity using a CVSS vector string. Currently, CVSS vectors of version 3.0, 3.1, and 4.0 are supported.

When nothing is selected, severity level is set to UNKNOWN.
When a specific level from NONE to CRITICAL is selected, the severity level is shown, along with the numeric severity score range for that severity level (e.g. for MEDIUM, the range 4.0 - 6.9 is shown).

5.2. Editing a manual vulnerability

To edit a manual vulnerability, select a vulnerability from the Vulnerabilities list and click on the Edit vulnerability impact assessment button.

This will open the Edit item page where you can edit the manual vulnerability fields alongside its impact assessment. Clicking the Save changes button saves the new version.

6. Vulnerability impact assessment

A Vulnerability impact assessment (VIA) is a detailed analysis of the impact of a vulnerability on the product. It includes information about the affected components, potential risks, and mitigations that can be taken to reduce the impact of the vulnerability.

In Ketryx, a single vulnerability can have multiple impact assessments, allowing you to track how a vulnerability's impact changes across different product versions. This is managed through a system of variants. When you need to update an assessment for a new version, you create a variant of the original assessment.

A VIA is available for each identified vulnerability (including manual vulnerabilities). To view the effective VIA for the selected version, click on the expand icon in the Vulnerabilities list.

The process of creating and managing VIAs depends on the context of the product version you are working in.

Initial assessment: If a vulnerability has no impact assessment yet, you can create the first one.
Creating a variant: If an assessment already exists, you create a variant. This creates a new, independent assessment while preserving the history of the old one.
Editing an assessment: If you need to make corrections to the assessment that is already effective for the current version, you can edit it directly.

The Vulnerability impact assessment functionality is only available to users with the necessary permissions and approval rules. If you don't have the necessary permissions, contact your organization's administrator.

The required permission is Edit dependency which can be found on the page Settings > Permissions of a project.

Approval rules can be set up on the page Settings > Approval rules of a project.

6.1. Creating a vulnerability impact assessment

To get started, select one or more vulnerabilities from the Vulnerabilities list and click on the Create impact assessment button. This will open a dialog where you can fill in the details of the impact assessment.

When creating or editing an assessment, a dialog appears where you can fill in the details. By default, the following fields are available:

Introduced in version: The first product version this assessment is effective in.
Obsolete in version: The first product version this assessment is no longer effective in.
Severity: This section can be used to modify the severity of the selected vulnerabilities.
1. CVSS vectors of version 3.0, 3.1, and 4.0 are supported.

For manual vulnerabilities, the Edit vulnerability impact assessment button is available instead of the Create vulnerability impact assessment button.

The vulnerability impact assessment dialog allows customization of all fields to align with your organization's requirements via the advanced project settings. This can be archived either with the advanced settings for the module, or using the more generic .

6.2. Editing a vulnerability impact assessment

To edit a vulnerability impact assessment, select a vulnerability with an existing assessment in the Vulnerabilities list. Then, click on the Edit vulnerability impact assessment button. This will open the Edit item page where you can edit the details of the impact assessment.

Currently, impact assessments can only be edited one-by-one.

6.3. Creating a variant of a vulnerability impact assessment

If an impact assessment already exists for a vulnerability, you can create a variant of it. This is useful when the impact of a vulnerability differs across product versions, and you need to work in parallel on separate assessments in different versions.

To create a variant:

Select a vulnerability in the Vulnerabilities list that already has an impact assessment.
Click the Create variant button.
This opens the Create variant page, pre-populated with the details from the original (base) assessment.
Update the fields for the new version, especially the Introduced in version and Obsolete in version

The new assessment is now a variant of the original. Ketryx will automatically show the effective assessment based on the version you have selected in the UI.

For a detailed guide on managing VIAs across different versions, refer to the work instruction: .

6.4. Viewing and comparing impact assessments

When a vulnerability has multiple impact assessments (a base assessment and its variants), Ketryx makes it easy to see which assessment is effective for each version and to compare them.

Use the version picker above the table to switch between product versions. The table updates to show the effective impact assessment for each vulnerability in that version.
Expand the detail panel for any vulnerability by clicking the expand icon on the right side of its row.
The panel displays the detailed information for the assessment that is currently effective.
You can use the dropdown menu in the panel to see all assessments for this vulnerability - both the original assessment and any variants. Select any assessment from the list to view its details. Keep in mind that choosing a different assessment here only changes what you see in the panel, and doesn't affect which version is selected at the top of the page.

For any given version, only one vulnerability impact assessment is considered effective. Ketryx determines which impact assessment to display by looking at when each assessment was created and which versions it applies to based on its Introduced in version and Obsolete in version fields, if applicable. When you create a variant of an assessment, it automatically becomes the effective assessment for its versions.

7. Rescoring vulnerabilities

New in 2.13

Ketryx provides a powerful CVSS calculator to rescore vulnerabilities, allowing you to refine the severity based on your specific environment and context. This is crucial for accurately prioritizing remediation efforts.

To rescore one or more vulnerabilities, select them from the vulnerabilities list. The "Rescore" button will appear in the action bar at the bottom of the screen. Clicking it opens the rescoring dialog.

Ketryx supports rescoring using CVSS versions 3.0, 3.1, and 4.0.

7.1. Rescoring a single vulnerability

When you rescore a single vulnerability, Ketryx provides a detailed, interactive experience.

For vulnerabilities with a known CVSS score, the dialog will display a full CVSS calculator, pre-filled with the vulnerability's existing metrics. The header provides a convenient preview, showing the original vector string broken down by metric groups (e.g., Base, Temporal, and Environmental for CVSS v3.1) and a real-time comparison of the current and rescored severity.

The CVSS calculator shown automatically adapts to the vulnerability's CVSS version (e.g., 3.0, 3.1, or 4.0), displaying the appropriate metric groups for that standard.

By default, the Base Metrics are locked to prevent accidental changes. See for more details on why and how to unlock them if needed.

For vulnerabilities without a known CVSS score, or if a vulnerability doesn't have an existing CVSS vector, if a vulnerability doesn't have an existing CVSS vector, the rescoring form starts with the Base Metrics unlocked, allowing you to define the base score from scratch. A preview of the score will be generated as you fill out the metrics.

7.2. Rescoring multiple vulnerabilities

You can also rescore multiple vulnerabilities at once. The behavior of the rescoring dialog adapts to handle the complexity of bulk editing.

General behavior: When rescoring a batch of vulnerabilities, any changes you make in the calculator will be applied to all selected items that are eligible for rescoring. Due to the potential for different base scores across the selection, a preview of the new scores is not displayed in the header.

Handling mixed CVSS versions: If your selection contains vulnerabilities with different CVSS versions (e.g., a mix of 3.1 and 4.0), Ketryx determines a single calculator version to use for the batch operation. The version used by the majority of selected items will be chosen. In case of a tie, CVSS 3.1 is preferred. Vulnerabilities with other CVSS versions will be skipped, and a warning message will inform you about which items were not rescored.

Handling items with missing base scores: If your selection includes items that have a CVSS version but are mixed with items that are missing a base score, those without a base score will be skipped. A warning will notify you of the skipped items.

Selecting only items with unknown severity: If all selected vulnerabilities have no CVSS score, the rescoring form behaves similarly to the single-item case: the Base Metrics are unlocked by default, and a score preview is shown as you define the new vector.

7.3. The base score and rescoring

You may have noticed that the Base Metrics in the CVSS calculator are locked by default. This is intentional and reflects a core principle of CVSS scoring.

The Base Score represents the intrinsic and fundamental characteristics of a vulnerability that are constant over time and across different user environments.

For instance, in CVSS v3.1, the Temporal and Environmental metrics are designed for adjustment. Temporal metrics reflect characteristics that change over time (like exploit code maturity), while Environmental metrics let you tailor the score to your specific operational context. This is why rescoring is most powerful when adjusting these metrics to get a score that truly reflects the risk to your organization.

CVSS v4.0 evolves this concept, introducing different metric groups such as Threat (e.g., Exploit Maturity), Supplemental (e.g., Safety, Automatable), and Environmental (which includes Security Requirements and modified base metrics).

The Ketryx CVSS calculator automatically adapts to the selected CVSS version, presenting the correct metric groups for rescoring.

For a detailed breakdown of the metrics in each version, refer to the official documentation from FIRST.org:

Regardless of the version, if you need to modify the Base Metrics, you can click the Unlock base score button. A warning will appear to ensure you understand the implications. Ketryx will always preserve the original CVSS score provided by the advisory, and your rescored assessment will be displayed alongside it for comparison and tracking.

7.4. Environmental scoring profile

New in 2.13.3

Generic CVSS base scores don't account for your organization's specific needs, leading to inefficient vulnerability prioritization. To address this, administrators can configure environmental scoring profiles with standard environmental values that users can apply when rescoring vulnerabilities. This allows sharing common configuration easily across the team, ensuring streamlined and consistent vulnerability assessments organization-wide.

When rescoring with a configured profile, vulnerabilities show visual highlighting for clear feedback:

Setting up the profile: Go to Advanced Settings in your project or organization, and copy the example configuration below and paste it into the field:

The configuration defines multiple environmental scoring profiles as an array. Each profile specifies a CVSS version and version-specific environmental metrics. Multiple profiles can be defined for each version, but only the first one will be used.

8. Download the vulnerability report

The Vulnerability Report can either be generated and downloaded as a release document (as described in ), or generated on demand for a selected version on the page SBOM > Vulnerabilities. The document will be generated an Excel file and will contain the following data:

Title: The title of the vulnerability.
Severity: The severity of the vulnerability.
Score: The score of the vulnerability.
Ecosystem: The ecosystem of the vulnerability.

The generated document aims to replicate the Manage vulnerabilities page content as closely as possible as the format permits. This includes any additional, removed or renamed fields configured for the vulnerability impact assessment.

In case a cell exceeds the limit of characters for a single cell in Excel (32,767 characters), the content will be split into multiple cells, spanning multiple rows.

9. Vulnerability management of an individual SOUP/OTS component/dependency

To manage the vulnerabilities of an individual SOUP/OTS component/dependency, navigate to the SBOM page of the project and click the dependency you want to manage. On its details page, click on the Vulnerabilities tab. There, the same functionality as on the Vulnerabilities page is available, but only for the selected dependency, listing only the vulnerabilities of the selected dependency.

Similarly, on the page SBOM > Vulnerabilities, the dependency details page can be reached by clicking on the dependency name below the vulnerability title in the Vulnerabilities list.

10. Vulnerability notifications

New vulnerabilities are discovered daily. To keep you informed about the latest vulnerabilities in your project, Ketryx sends daily and weekly vulnerability notifications via email. Daily notifications include vulnerabilities of critical severity, while weekly notifications cover all new vulnerabilities regardless of the severity level. You will receive notifications for all dependencies in your current version and all active releases (as described in ). Notifications are sent to all users configured in the approval rules for dependencies, according to .

Ketryx updates its vulnerability database periodically and scans all your dependencies for known vulnerabilities. This includes dependencies reported via , as well as or files using the .

MAN-03 Supply Chain Management: Software Dependencies

Manual for software dependency configuration management using Ketryx Software Supply Chain Management

1. Introduction

This manual assumes you have access to Ketryx Software Supply Chain Configuration Management, and have created an Organization with Members and Groups.

1.1. Purpose

The purpose of this manual is to instruct users on how to use Ketryx Software Supply Chain Configuration Management to manage software dependencies.

1.2. Scope

This manual describes how to use Ketryx Software Supply Chain Configuration Management to manage software dependencies including open-source software, and other Software of Unknown Provenance (SOUP).

2. Terms and definitions

The definitions of this document conform to the ones of ISO/IEC 62304.

3. Project setup

User logs into Ketryx Platform at by using their connected Google or GitHub account, or using their email addresses.
User presses the Create project button to create a new project.
User inputs a project name and Git repository URL.

4. The dependency screen

The Dependency screen lists each direct dependency detected as detailed in the section. For each dependency, information is given on its name, used version(s), risk level, vulnerabilities, and status.

The dependency Name column is derived from the dependency files. Note that Java dependencies are specified in the format organizationId:artifactId.

The Used version(s) column is derived from the dependency files. When no locked version can be detected, the used version(s) will show a declared version only.

The Risk level column will store the user-defined risk level upon dependency editing. See for information on how to apply a risk level to a dependency.

The Vulnerabilities column shows a warning icon as well as the CVSS severity rating (none, low, medium, high, critical) for each vulnerable dependency. Press the icon for information on the vulnerability name, description, CVE ID, published date, severity score, affected version, and external URLs for more details. See also the section for details.

The Status column shows the current acceptance status of each dependency. Besides the empty state which indicates that a dependency has not yet been worked on, there are six states a dependency can be in. Namely:

Draft ✔ means that changes have been made to this dependency and once fully approved and moved into a controlled state, it would result in this dependency being accepted, indicated by the checkmark icon on the right.
Draft 𝗫 means that changes have been made to this dependency and once fully approved and moved into a controlled state, it would result in this dependency being rejected, indicated by the X icon on the right.
Accepted ✔ means that a dependency has been fully approved and moved into a controlled state and its usage being accepted.

Hovering over the status will show information about which groups have already approved a dependency:

5. Approval flow

Ketryx Platform allows users to mark individual direct dependencies as “approved”, enforcing user-specified approval steps and enabling security and usage metadata to be customized for each dependency.

To approve a dependency, the user must first set up approval steps, as detailed in the Ketryx Installation Guide.

To approve one or more dependencies using the default settings (i.e., accepting the currently used version), the batch approval workflow can be used on the .

5.1. Batch approval

Select one or more dependencies by clicking on their rows on the dependency page. A menu will pop up at the bottom of the screen.
To approve one or more dependencies, click on the “Approve dependencies” button, then the “Approve” button at the bottom of the dependency approval dialog.
Upon approving one or more dependencies, the corresponding dependency rows will be updated, and the approval status tooltip will show which steps have approved each dependency.

6. Manual dependencies

Many dependencies can be added automatically by Ketryx by scanning and parsing different types of package manifest files. See . But there are also dependencies on SOUP items that are not explicitly declared in code. These can be manually created in Ketryx with some caveats listed below.

6.1. Creation

To create a manual dependency, click on the Create dependency button on the above the table.

This will open a new page where at least a name for the manual dependency has to be declared. All other inputs are optional.

By default, all versions of the dependency will be set as accepted since there is no source of truth to match against in this case. Custom versions can still be declared to indicate that a certain version of a dependency is accepted or rejected.

6.2. Caveats

While manually created dependencies behave just like the ones scanned automatically by Ketryx in terms of their approval workflow, they differ in certain ways. For example, they don't have their version automatically parsed from a source of truth but rather rely on manual updates by users of Ketryx.

Additionally, Ketryx does not attempt to scan for vulnerabilities for manually created dependencies. Rather, they have to be defined manually as well but do not count towards any vulnerability count on dashboards.

7. Dependency editing

Dependencies can be edited by clicking on their name in the and then clicking Edit dependency on their detail page. Some of their metadata can be changed or supplemented, such as:

Intended use
Security impact
Security impact justification
Reliability impact

For manually created dependencies these details can be edited as well:

Name
Vulnerabilities

7.1. Versions to accept

For each dependency, you have fine-grained control over which versions you accept. For dependencies found in package manifest (lock) files (see ), if available, the locked version will be selected, or else the declared version. Additionally, you can select a custom version (range) or simply accept All versions or None.

The accepted version is checked against the used versions found in the package manifest (lock) files. E.g. if in your package-lock.json file version 2.6.0 of a dependency is found but a custom accepted version range of ^2.9.0 was defined, e.g. because a vulnerability was found in versions less than 2.9.0, this version would not be accepted and the current usage of this dependency would result in a rejection once put into a controlled state. See below for an example.

8. Custom approval version specifications

When approving custom versions, enter SemVer-compatible version specifications. SemVer-compatible version ranges include:

> =1.0.0
> 1.0.0 (see the section on caveats)
> <1.0.0

For more information on what each of these ranges means, a helpful resource is .

8.1. Caveats

When entering version ranges for approval, note that whether a dependency is approved is checked following SemVer rules, which differ from standard math. E.g., if approving a range >1, this does not include the version 1.19.4, and >2 does not include 2.6.0. In accordance with SemVer rules, approving either >1.0.0 or >=1 does approve the version 1.19.4.

9. Revoking dependency approval

Once a dependency is approved, a user can revoke their approval.

Navigate to the history page by clicking History in the sidebar menu. Each given approval will show up as an individual row.
To revoke a particular approval for a dependency, click the Revoke approval button on the right-hand side of the row.
Confirm and approve the approval revocation.

10. Cybersecurity

Ketryx scans the to detect vulnerabilities in the direct dependencies of each project found in supported package manifest files.

When a dependency is found to have a relevant vulnerability (i.e. the dependency versions are within the affected versions of a given vulnerability), a warning will show up on its dependency row. Clicking this warning will give more information on the details, the CVE ID, the published date, the severity, the affected version range, and URLs leading to more information.

These vulnerabilities are also reported in the generated SOUP report Excel file.

To learn more on how to create a vulnerability impact assessment and generate a vulnerability report for a project, see the manual.

10.1. Supported ecosystems

Ketryx currently supports the following for vulnerability scanning:

GitHub Actions
Go
Hex
Maven

While Ketryx can make use of any packages of any ecosystem submitted via SPDX files, the above ecosystems are the ones that are actively scanned for vulnerabilities. For example SPDX files resulting from container image scans can be submitted, but Ketryx will not scan these packages for vulnerabilities.

11. Dependency scanning

To find dependencies, Ketryx employs a scanner that pulls each Git repository and analyzes dependencies from dependency manifest files.

For each supported language, Ketryx analyzes both a declared dependency manifest file (e.g. a package.json file), which can describe version ranges, and a locked dependency manifest file (e.g. a package-lock.json), which describes deterministic dependency configurations that can lead to reproducible builds.

For each language, dependencies are determined by searching for declared and locked dependency files in the same directory, matching the specific dependency name, and storing both the declared and locked versions of that dependency.

Ketryx supports the following languages and ecosystems:

Package Manager

Languages

Recommended Formats

All Supported Formats

Below is a detailed description of how Ketryx scans for dependencies in each language.

Ketryx's dependency scanning currently only supports direct dependencies of a project, i.e., top-level dependencies. For transitive dependencies, see .

11.1. JavaScript

Declared dependency file: package.json. The scanner searches for direct dependencies specified in the dependencies block of the package.json file. Note that devDependencies are not being scanned or indexed.

Locked dependency file: package-lock.json. The scanner searches for locked versions of each dependency found in the dependencies block of the package.json manifest.

Locked dependency file: yarn.lock. The scanner searches for locked versions of each dependency found in the dependencies block of the package.json.

11.2. Python/Pipfile

Declared and locked dependency file: requirements.txt. The scanner searches for dependencies specified on each line. When a version is given as an individual number, e.g. ==1.0.0, this is treated as a locked dependency.

Declared dependency file: Pipfile. The entries in the packages block are read, no entries in the dev-packages blocks are read.

Locked dependency file: Pipfile.lock. Each package in the corresponding Pipfile is resolved with a specific version.

11.3. Python/Poetry

Declared dependency file: pyproject.toml. Each dependency below [tool.poetry.dependencies] is parsed as a dependency. python is left out deliberately as it is not technically a library.

Locked dependency file: poetry.lock. Each matched dependency from the pyproject.toml file is resolved to a specific version or, if left out, resolved to *.

11.4. Java/Gradle

Only Gradle is currently supported. Since build.gradle files specify an arbitrary script to run, Ketryx only supports dependency declarations in the following formats:

Map formatted dependencies, e.g.:
String formatted dependencies in a single line, e.g.:
String formatted dependencies in a block, e.g.:

The dependencies' group ID, artifact ID, or version must be specified literally in the build.gradle file, not externally. E.g., Ketryx does not support inferring dependency versions with a variable such as javax.xml.bind:jaxb-api:${jaxb_version}.

Other dependency formats will be scanned. In the above example where a dependency version is a variable, these will still show up in the dependency list but will not execute the build.gradle script.

11.4.1. Caveats

build.gradle.kts files are not currently supported.
Only packages available on Maven have their metadata fetched.
The name of the file must be build.gradle.

11.5. Objective-C and Swift

Declared dependency file: Podfile. Each dependency line prefixed by the pod keyword is read as a declared dependency. When :subspecs are specified in a pod, they are used to modify the dependency name by adding each subspec as a suffix. E.g., for a pod React with :subspecs Core, CxxBridge and others, the dependencies will be React/Core and React/CxxBridge.

Locked dependency file: Podfile.lock. Each dependency matched from the Podfile is resolved to a specific version by finding the corresponding dependency in the PODS section of the Podfile.lock file.

11.6. Other ecosystems

We are continuously working on adding support for more ecosystems. If you have a specific ecosystem you would like to see supported, please let us know by .

12. Transitive dependencies

Ketryx built-in dependency scanning currently only supports direct dependencies of a project, i.e. top-level dependencies. However, using the it is possible to submit SPDX (Software Package Data Exchange) files in JSON format that contain all dependencies of a project, including transitive dependencies. Ketryx will use this information to build the dependency tree and also scan these dependencies for vulnerabilities for . See our for more information on how to use the Build API and the SPDX format with Ketryx.

Once the dependencies are submitted, the SBOM Review page in Ketryx will show the submitted top-level packages dependencies for the version it was submitted for. Direct and indirect dependencies of these packages are shown on the Dependencies tab of each individual dependency's detail page. This can be configured to create dependency items for all dependencies, not just the top-level ones. For more details about this, see the documentation.

For Ketryx to display the transitive dependencies, the submitted SPDX file must contain transitive dependencies in the packages list and the necessary relationships in the relationships list for each dependency. If these are missing, Ketryx will not display the transitive dependencies.

13. Output document

Ketryx can generate a SOUP configuration report in tabular form. At least the following information is contained in the generated document:

Dependency name: The name of the dependency.
Registry URL (2): The URL to the registry if the dependency was found in a package registry.
Declared Version(s) (1): The declared version (range) of a dependency found by Ketryx in a package manifest file. E.g. for npm dependencies, if react was declared using "react:" "^18.0.0" in package.json

Notes:

(1) Empty for manual dependencies. (2) For automatically resolved dependencies, Ketryx will try to fill out this information by scraping package registries. If not found, this column will be empty but is user-editable to amend missing information. For manual dependencies this field can be filled out by the user.

MAN-08 Risk Management

Manual for risk management using the Ketryx Lifecycle Management

1. Introduction

1.1. Purpose

The purpose of this manual is to explain the usage and operations of the Ketryx Lifecycle Management system pertaining to that act in accordance with ISO 14971 and IEC 62304.

1.2. Scope

The scope of this manual concerns the management of risks in Ketryx and Jira, namely the tools, resources, procedures and deliverables related to the risk management of a product in Ketryx.

1.3. Definitions and acronyms

For the purposes of this document, the terms and definitions given in U.S. QSR (21 CFR Part 820), ISO 13485, and IEC 62304:2006-AMD1 apply. Where contradictory, IEC 62304 and ISO 13485 prevail.

ALM: Application Lifecycle Management
P1: Likelihood of occurrence
P2: Likelihood of harm
Po: Total ("overall") Probability

2. Overview

The Ketryx Lifecycle Management system implements a risk management procedure that aligns with the principles with ISO 14971. Members can conduct project-level and configuration item-level risk analysis with the focus of identifying potential risks, and limiting the harm resulting from said risks, to the patient.

3. Risk configuration item

Members are expected to perform a product-level risk analysis using methods such as , and record the results using for use across the system.

Risk items can be introduced throughout the product lifecycle and in each new version. Moreover, Ketryx allows any risk management methodology to be used, which can be mentioned on the resulting Risk items and also custom Risk item types.

3.1. Introducing risks

It is possible to perform risk analysis on a configuration item level, which can be done for the following item types:

Requirement
Software Item Spec
Hardware Item Spec
Change Request

If a configuration item results or is associated with a risk, it is referred to as an item with introduced risks.

3.2. Risk controls

Tooling: Risk Control Measure tracking and system notifications

Risk control measures can be created from Risk configuration items. This includes configuration items of the following types: Requirement, Software Item Specification, Hardware Item Specifications, and Test Case.

Risk controls can also lead to new risks, which are tracked as well.

3.3. Custom risk item types

New in 2.13

In addition to builtin Risk items, an organization may define custom Risk item types with their own respective set of item fields (e.g. to separate Cyber Risks from more physical Risks).

A custom Risk item can be defined via the advanced setting on the organization level via the RISK category.

Example for a custom risk item representing identical fields as a builtin Risk type:

Important: When configuring a custom risk item type, the following fields must be present to be able to conduct risk analysis according to the Ketryx Risk management framework:

initialOccurrenceProbabilityText
initialHarmProbabilityText
initialTotalProbability

Items of category RISK will be equivalent to a built-in Risk item. They will comply to the given effective Risk configuration and Risk enforcement / synchronization rules, and will provide Risk specific UI in the Create / Edit item screen on Ketryx.

New in 2.13.6

The is now enabled by default for custom item types in the "Risk" category. To use granular widget control to whitelist only specific risk item types where you want the widget to appear, see .

3.4 Risk items with extra custom fields

Ketryx currently provides configuration via the advanced setting to add custom fields to any built-in Ketryx item type, such as Requirements, Software Item Specifications, Test Cases, etc.

However, due to technical reasons, this particular setting is currently not available by default for Risk item types. In order to remove fields from or add fields to the Ketryx create/edit form for Risk item types, a feature flag needs to be enabled that activates a unified create/edit item experience.

Please contact the Ketryx Support team to activate the new Risk item create/edit experience with custom field functionality.

4. Risk configuration

This section provides an overview of the options for risk configuration in Ketryx. Please see for a detailed guide.

The risk configuration is a foundational component of the risk management system as it allows certain members to predefine a list of possible values for various Risk item fields, as well as define the framework of how a risk should be evaluated given a set of values (i.e., P1, P2, and Severity).

The risk configuration can be defined on two levels:

At an organization level (as an organization owner), which will affect the configuration of all projects in said organization
At a project level (with project management permissions), which will scope the configuration to said project and override any overlapping configuration fields set in its organization

For each level, the configuration may be set on the Advanced Settings page of an organization,

and of a project.

If a configuration field is not provided on either level, the default system values will be used as a fallback.

4.1. Configuration of risk analysis

The Ketryx ALM offers members an automated risk assessment which relies on matrices to perform the evaluation. Said evaluation puts four evaluation matrices at the members disposal for configuration:

Initial Total Probability matrix
Initial Risk Evaluation matrix
Residual Total Probability matrix
Residual Risk Evaluation matrix

The matrices can be configured in the following dimensions:

General level: The matrices are applied to both, Risk items and custom Risk items (if no more specific configuration has been found. See the advanced settings for the )
Custom Risk type level: The matrices are applied to a particular custom Risk item type (see the advanced setting for the )

For each dimension, a member may define different matrices per hazard type to add even more fine-grained risk matrices.

Note: Ketryx tries to construct a risk configuration from the most specific configuration (e.g. project level / hazard type based / custom risk type based) to the most general one (org level / default Risk based).

Additionally, Ketryx provides a option that prevents members from overriding any of the derived values from the matrices, when editing a risk.

4.2. Harm associated severity

The risk configuration provides the possibility to associate an initial severity to a harm. This results in the associated severity being filled in once the corresponding harm has been selected by a member. In , a member cannot override an associated severity and they must provide a harm value set in the configuration.

4.3. Hazard type associated configuration

Members may provide a risk configuration that is associated with a hazard type value (either on the general or risk type level). Consequently, if a member selects a hazard type with an associated configuration, the following risk configuration fields, if available, will be used instead of the regular risk configuration fields:

Initial and residual total probability matrix
Initial and residual risk evaluation matrix
Initial and residual likelihood of occurrence
Initial and residual likelihood of harm

4.4. Non-strict mode (default)

Non-strict mode will enable the following behavior:

Members may freely define a harm, even if the harm does not correspond to any default severity. Therefore, it is also not required to configure a pre-defined list of harms.
The initial severity field may be selected freely and is not coupled to any harm (but may default to a harm's configured severity).
The initial and residual risk evaluation fields as well as overall risk acceptability fields can be manipulated after a calculation.

Additionally, the following synchronization behavior will be active:

On a risk configuration change, only empty fields on an uncontrolled Risk item will be modified, if necessary
Controlled items will remain in a controlled state following a configuration change

Note: This mode is the default to allow for more flexibility. However, we recommend enabling the various strict modes to always enforce up-to-date Risk items.

4.5. Strict modes

Ketryx provides a multitude of strict enforcements for various aspects of the risk management feature, namely:

Requiring the selection of a pre-defined harm value and its associated initial severity value
Enforcement of any risk analysis values derived from the default or customized
Requiring the selection of a pre-defined hazard value
Requiring the selection of a pre-defined hazardous situation value

To activate these options, navigate to the project's settings page and enable them under the Risk management section.

By turning on strict mode 1 or 2, the following synchronization behavior will be active:

Ketryx will apply the enforced risk configuration to any uncontrolled Risk items and consequently create new records
Controlled items will remain in a controlled state and therefore unaffected

4.5.1. Enforced risk configuration

In strict mode 1 and 2, whenever the risk configuration has been changed, either on the organization or project level, Ketryx will create a new record for all relevant Risk items to reflect the most recent configuration.

If a Risk item complies to a P1, P2 or severity value that doesn't exist in the new configuration (e.g. the new matrices don't have an entry for the P1/P2 pair), the value will be unset, ultimately removing all the other values that are based on the relevant lookup table.

4.5.2. Enforced field values

Given the appropriate setting, the system ensures that the entered harm, hazard or hazardous situation of a Risk item corresponds to a harm, hazard or hazardous situation from the risk configuration, respectively. If the entered value were to not correspond to a pre-defined value, members will not be able to approve the Risk item once its in a resolved state.

5. Creating and editing risks

Risks may be created either in Ketryx or Jira, with the former being recommended and the latter being subject to certain restrictions. The risk form is available through the risks page, by click on the Add risk button.

To edit an existing risk, an Edit risk button can be found on an individual item in the risks page.

For detailed instructions on the workflow of a risk, see .

5.1. Editing in Jira

For the best user experience, we recommend managing your risk analysis in Ketryx. However, if you opt to manage Risk items in Jira, there are some caveats and formatting limitations to pay to attention to, which will be described in detail in the following sections.

5.1.1. Jira rich-text formatting

Jira provides extensive rich-text formatting capabilities out of the box, which also apply to all the relevant Risk item fields. However, not all formatting capabilities map seamlessly to Ketryx.

As a guideline, it is highly recommended to only use the following formatting functionality within a rich-text field on Risk items:

Paragraphs
Ordered / Unordered lists
Basic inline formatting such as bold, italic, or inline code

The following formatting options are not supported and will cause undesired formatting on Ketryx's side when synchronizing items with Jira:

Tables
Inline images and other attachments
Font colors
Strikethrough

The following behavior may occur when handling Risk items using unsupported formatting within Ketryx:

The Ketryx Risk management page and risk editing form may show malformed text or omit particular information. After saving, the data as seen on Ketryx will still be stored in the record as-is.
When editing and saving a dataset containing unsupported formatting, particular styling / information may be removed upon save and will be synchronized to Jira (to re-align with Ketryx's formatting standards).

5.1.2. Omitted risk analysis fields

A Risk item in Jira does not possess any editable initial and residual risk analysis fields (e.g. P1, Severity). Instead, it offers a read only widget to view the values of these fields, which can be set in Ketryx. The values are rendered using .

5.1.3. Harm associated severity

Due to technical limitations, the harm field in Jira is a free-form text field. When the risk configuration of the connected Ketryx project has activated, and the entered harm does not correspond to any harm in the risk configuration, the Initial severity field remains unchanged in the widget and will not map to its pre-configured harm <--> initial severity value.

5.1.4. Hazard and hazardous situation

Similar to the harm field, both the hazard and hazardous situation fields in Jira are free-form text fields, and don't provide pre-configured dropdowns based on the Ketryx project's risk configuration. Consequently, when the risk configuration's are enabled, members are required to enter the precise value of a configured hazard/hazardous situation, otherwise the approval of the risk may be potentially .

5.1.5. Sequence of events content

The Ketryx ALM expects a numbered list in the Foreseeable sequence of events field. If a member fails provide content in this format, Ketryx shall do its best to transform the provided content into a numbered list in Ketryx.

Each entry in the list denotes an individual event within the sequence, with the specified order being of significance.

5.1.6. Risk calculation boxes

In the risk form and , Ketryx offers a visual container that provides an understanding of how certain risk analysis fields were derived. Members can visually toggle, in the container, any of the matrices that were used in the calculations.

Derived values that are based on the matrices will be visually marked as "recommended" values by the form. However, users retain the flexibility to override these recommendations. If they do, their action will be made explicit with an asterisk in the container, or even with a completely separate container as is the case with the overall risk acceptability.

Granular widget control

New in 2.13.6

You can now control which risk-related item types display the Risk widget through the advanced settings - . This allows you to selectively disable the widget for specific risk item types while keeping it enabled for others. Example use case: If you have custom risk types but want to disable the widget for the standard Risk type, simply whitelist only your custom risk types in the configuration.

6. Risk management page

Members can review risks using the risk table in the Risk management page. Items in the table can be grouped by Harm or Hazard, sorted by various Risk item fields and filtered by acceptability.

Each Risk item row will feature an overview of the risk acceptability, of any missing approvals and if the benefit-risk analysis is set. Furthermore, risk controls of a risk will have their test cases and corresponding results listed. Metadata-related details, including the ticket state, current owner, and pertinent versions, are also visible.

Members should document their risk analysis review in the risk management file.

7. Risk controls page

Members can review risk controls using the risk table in the Risk controls page. For each risk control, the following columns can be seen:

The risk being controlled
A hazard analysis of the risk
Any risks introduced by the risk control
Any test cases covering the risk control

Hazard analysis

The hazard analysis gives an overview of the following fields originating from the controlled risk:

Hazard (Rich-text field)
Hazardous situation (Rich-text field)
Sequence of events (Rich-text field)
Harm (Rich-text field)

For the hazard analysis to show up green, the following conditions must be met: the first four rich-text fields must be filled out and the risk acceptability must be acceptable. If the latter is not acceptable, then a benefit-risk analysis must be provided. If any of the fields (except for benefit-risk analysis) are missing, then the status pill will show an exclamation icon. If the risk acceptability is not acceptable and no benefit-risk analysis is provided, then an error icon will be displayed.

Controlled risk & Arising risks

The controlled risk and arising risks (if any) status indicate whether the relevant risks are in a controlled state.

Tests

The tests column indicates whether a Test Case has been assigned to the risk control. Furthermore, it informs the user whether the Test Case is in a controlled state and if a corresponding controlled Test Execution exists. If a failing Test Execution exists, then the status pill will show up with an error icon.

8. Release documents

Ketryx offers four built-in release documents related to risks:

Risk Management File
Risk Matrix
Risk Control Matrix
Testing Report

Custom documents may be generated based on .

8.1. Risk matrix customizations

Columns in the risk matrix release document may be renamed or omitted. See the Risk matrix field under Document configuration on the page.

8.2. Risk management file customizations

By default, the Risk Management File includes a section about the latest configured risk evaluation matrices. A member may omit this section by configuring the Risk Management File field under Document configuration on the page.

MAN-09 Git-Based Configuration Items

Manual for incorporating Git-based Configuration Items into Ketryx Lifecycle Management

1. Introduction

Git-based configuration items allow users to maintain configuration items in Git repositories, i.e., in source code, rather than in or in parallel with a task/work item management tool (e.g., Jira). This way, users can maintain configuration items in the same place where they maintain the source code. By default, this feature works on an opt-in basis.

1.1. Purpose

The purpose of this manual is to instruct users on how to opt into Git-based configuration items feature and incorporate configuration items, whose content is managed in a Git repository.

1.2. Scope

This manual describes the ways of maintaining configuration items in Git repositories so that Ketryx can easily access them and incorporate them into the lifecycle management process. Furthermore, it instructs users on how to define relevant files locations, within a Git repository, for configuration items.

2. Opt-in via project settings

You can opt into Git-based configuration items by defining during the project or process. These glob patterns define the locations of configuration items within a Git repository and Ketryx will scan the repository for files that match these patterns. For example:

Ketryx will scan the repository for:

All files with the .md extension in the src/requirements/ directory and all its subdirectories
All files with the .feature extension in the features/ directory and all its subdirectories
Omit all README.md

You can add multiple patterns per repository by defining each pattern in a new line.

2.1. Choosing a specific parser

Ketryx supports associating metadata with a glob pattern. This way, you can define the name of the parser that Ketryx should use to parse the content of the files that match the glob pattern. The metadata is defined by prepending the glob pattern with PARSER_NAME:. PARSER_NAME is a built-in parser that Ketryx uses to parse the content of the files. The following parsers are supported:

tests - for parsing source code test files. .

More parsers can be configured on demand.

2.2. New project setup

Please follow steps 1, 2, and 3 of the general for initial instructions.
Optionally, you may need to enable repository authentication if the repository in question is a private repository. For more specific information on how to do this, see the specific integration guides for , , and .
Activate the Enable Git based Items checkbox and input the desired glob patterns, thus instructing Ketryx where to look for configuration items within the Git repository.

2.3. Update Project

Log into Ketryx Platform at by using your connected Google or GitHub account, or using your email addresses.
Navigate to the desired project and its Settings.
- If you want to opt into Git-based configuration items for a repository that is already connected to Ketryx, continue with step 5.
- If you want to opt into Git-based configuration items for a repository that is not yet connected to Ketryx, continue with step 3.

3. Defining configuration items (supported file formats and content parsing)

Currently, Ketryx supports managing configuration items in:

Markdown files (support for all item types)
Cucumber files using Gherkin syntax (support for items of type Test Case)
Java files (currently it supports items of type Test Case)
Kotlin files (currently it supports items of type

Based on the file type, you can define various fields in the content of the file that will be used to define the configuration item. Please have a look at the Item schema section of each item type to see which fields are available for defining the configuration item. Respective item types and their schemas are defined in the following work instructions:

Git-based item versioning is based on the versioning of the repository. Thus, defining fields like Introduced in version or Obsolete in version has no effect. .

Depending on the file type, the configuration item is defined in different ways. The following sections describe how to define configuration items and their fields in each of the supported file types.

itemId is a common field that can be used to uniquely identify a configuration item. If itemId is not explicitly specified, Ketryx will use the file path within the Git repository as a fallback. .

3.1. Markdown files - All types of configuration items

Each markdown file is considered to be a single configuration item and can be of any type that is specified in the section.

3.1.1. Fields in the front matter

In the front matter of a Markdown file, you can define the following fields:

itemId - a unique identifier of the configuration item
itemType - the type of the configuration item
itemTitle - the title of the configuration item that is used instead of the first heading of the main content

To define traceability to other configuration items, you can include any field that is defined in the in the front matter of the Markdown file.

itemId, itemType, itemTitle and traceability fields must be defined using the camelCase notation. Any other field that is defined in the Item schema of the configuration item type must be defined using the "natural language" notation as it is defined in the Item schema (e.g. Requirement type, Context, Test result)

3.1.2. Fields in the main content

In the body of a Markdown file you can define all rich text fields that are defined in the Item schema. Here is how you can define the content of the configuration item so that Ketryx can parse it properly:

The first heading of the main content is considered to be the title of the configuration item (unless there is an itemTitle defined in the front matter)
The rest of the content Ketryx will parse based on the set of rules that are defined in the next section below

Rules for maintaining item fields in the main content:

Ketryx looks for a special section called Item fields in the main content
Inside the Item fields, Ketryx looks for headings that match the rich text field names defined in the Item schema of the configuration item type (e.g. Description, Inputs, Outputs, Steps, ...), or Extra fields that have defined in the advanced settings (Ketryx treats these fields in a case-insensitive manner)
- These headings must be on a lower level than the

Given the example above, Ketryx will extract the following fields:

Title: Add dose suggestion
Description:
Inputs: Inputs content
Outputs: Outputs content

However, if the Description heading is defined under the Item fields section, the description will be set to the content under the Description heading.

Given the example above, Ketryx will extract the following fields:

Title: Add dose suggestion
Description: This is the description of the item
Inputs: Inputs content
Outputs: Outputs content

Finally, if the Item fields section is not defined, Ketryx will consider the whole content of the file as the description of the configuration item.

Given the example above, Ketryx will extract the following fields:

Title: Add dose suggestion
Description:

3.1.3. Handling attachments and media files

When parsing Markdown content, Ketryx automatically detects and extracts references to media files such as images and stores them for persistent access. This feature is particularly useful when generating template documents from Git-based design specifications that must include embedded diagrams or screenshots.

Supported attachment formats:

Ketryx can identify and process media references in the following formats:

Markdown-style embedded media with external URLs:
Markdown references to local relative paths:
HTML <img> tags embedded in Markdown files:

How it works:

When Ketryx parses a Markdown file, it scans the content for media references in all supported formats
For external URLs, Ketryx downloads the media file and stores it for persistent access
For local relative paths, Ketryx looks for the file in the Git repository relative to the Markdown file's location
All extracted media files are stored and associated with the configuration item

Ketryx only processes attachments when the Markdown file itself changes. If you update an attachment (either an external URL or a local file in the repository) without changing the Markdown file that references it, Ketryx will not detect or reprocess the updated attachment. To ensure Ketryx picks up attachment changes, you must modify the Markdown file that references the attachment.

3.2. Cucumber files - Test Cases

Every Scenario in a Cucumber file is considered to be a configuration item of type Test Case. For example:

Metadata is defined in the tags of a Scenario. In the example above, the following tags are used:

@tests:KP-456 - Defines traceability to another configuration item (in this case KP-456 is a Jira work item)
@tests:md1-id - Defines traceability to another configuration item (in this case md1-id is another Git-based item)
@id:approving-git-based-items

@implements tag is used to reference an existing Jira Test Case. Ketryx will not create a new Test Case configuration item for the Cucumber Scenarios that use the @implements tag or the @tests tag that references already existing Jira Test Case.

In the background, Ketryx extracts and stores a testResultId property for each parsed test case. This property is used to connect automated test execution results to the test.

Main content is defined in the body of a Scenario:

The name of the Scenario is considered to be the title of the configuration item.
Scenario name, steps and tags are considered to be the description of the configuration item.

Traceability to other configuration items is defined in the tags of a Scenario. Every tag that starts with @tests is considered to be a traceability field, and it must always point to the item that is being tested.

If itemId is not explicitly specified, Ketryx will use the {Feature name}-{Scenario name} as a fallback. .

3.3. Source code - Test Cases

Define the glob pattern with the tests parser to scan the repository for files that contain test cases.

By defining a glob pattern with the tests parser, Ketryx will scan the repository for files that match the pattern and parse the content of the files as items of type Test Cases. .

Metadata is defined in the comments above the test case function:

Traceability to other configuration items is maintained in the comments above the test case function. A tag of the form @tests:ABC-123 can be used to associate the test with its tested items.

In the background, Ketryx extracts and stores a testResultId property for each parsed test case. This property is used to connect automated test execution results to the test. Depending on the language, the testResultId is automatically extracted and cannot be changed by the user.

Main content is defined as follows:

Item title should be in the comment above the test case function and for that purpose, use the @itemTitle:"My Title" or @itemTitle:Title tag. If the tag is not provided, Ketryx will fall back to the function name as the item title.
Item description is the body of the test case function.

Rules for maintaining item properties in the comments above the test case functions:

Ketryx supports defining item properties in the first preceding block comment above the test case function
Ketryx supports defining item properties in multiple consecutive line comments above the test case function

3.3.1. Java

Ketryx will consider extracting the item as a Test Case only if all the following conditions are met:

The test case function is a class method
The test case function is annotated with the @Test annotation
The test case function has a comment (a block comment or multiple line comments) above it that contains at least one @tests tag

3.3.2. Kotlin

Ketryx will consider extracting the item as a Test Case only if all the following conditions are met:

The test case function is a class method
The test case function is annotated with the @Test annotation
The test case function has a comment (a block comment or multiple line comments) above it that contains at least one @tests tag

3.3.3. Swift

Ketryx will consider extracting the item as a Test Case only if all the following conditions are met:

The class is a subclass of XCTestCase
The test case function has a comment (a block comment or multiple line comments) above it that contains at least one @tests tag

4. Uniquely identifying a configuration item

As mentioned in the previous sections, metadata is used to uniquely identify a configuration item. The itemId field is used for this purpose. The itemId field is a string that uniquely identifies a configuration item within a Git repository. For use cases where you need to define traceability between items within a Git repository, you would need to define the itemId. However, if itemId is not explicitly specified, Ketryx will use an implicit default based on the file type and source code type, to assign the itemId to your configuration item. .

The user should take care that itemId is unique within the Git repository and Ketryx project.

4.1. How Ketryx deterministically de-duplicates items with the same `itemId`

When Ketryx scans a Git repository for configuration items, it will check if the itemId of the configuration item is unique within the repository. If the itemId is not unique, Ketryx will deterministically use the file path within the Git repository to choose the file from which the item will be extracted. When introducing two items with the same itemId in the same commit or adding a new item with an existing itemId in a new commit, Ketryx will sort the files by their path and choose the first file in the sorted list. The consequence of this could be that the item is extracted from a different file than the user intended. If the itemId is duplicated in the same file, Ketryx will extract the item from the first occurrence of the itemId.

5. Configuration item types

Configuration item types are used to define the type of configuration item. The itemType field is used for this purpose and following values can be used:

6. Traceability to other configuration items

Traceability to other configuration items is used to define the relationship between configuration items. Depending on the configuration item type, different fields are used for this purpose. Here is the list of all possible fields that can be used for traceability:

Please check the section for each configuration item type for more information on how to use these fields.

6.1. Git-based configuration items traceability to Jira-based configuration items

In a Markdown file, it is possible to define traceability between Git-based and Jira-based configuration items. For example, it is possible to define that a Software Item Spec, whose content is managed in a Git repository, fulfills a Requirement that is managed in Jira. In order to do this, define the itemFulfills field in the metadata of the Software Item Spec, with the itemFulfills field being set to the Jira work item key:

For Cucumber and source code files that extract items of type Test Case, it is enough to use the Jira work item key as a tag, e.g., @tests:KP-42.

In Cucumber files, use the @implements tag to reference an existing Jira Test Case.

6.2. Git-based configuration items traceability to other Git-based configuration items

In a Markdown file, it is possible to define traceability between Git-based configuration items. For example, it is possible to define that a Software Item Spec, whose content is managed in a Git repository, fulfills a Requirement that is also managed in the same Git repository. In order to do this, define the itemFulfills field in the metadata of the Software Item Spec, with the itemFulfills field being set to the itemId of the Requirement:

For Cucumber and source code files that extract items of type Test Case, it is enough to use the @tests tag with the itemId of the Requirement, e.g., @tests:some-unique-string-1234.

6.3. Jira-based configuration items traceability to Git-based configuration items

All configuration items that are managed in a Git repository and synchronized with Ketryx are automatically exposed in Jira select fields for item relations. Thus, if a configuration item is defined in a Git repository and synced with Ketryx, it will be available in the select field of the Jira work item. For example, if a Task, whose content is managed in Jira, implements a Software Item Spec that is managed in a Git repository, you can select the Software Item Spec from the Git repository in the select field of the Task work item.

7. Approval and transition flow

Because of the collaborative nature of Git repositories, it is possible that multiple users are working on the same configuration item at the same time. Having this in mind, Git-based items do not have an owner in Ketryx, thus an approval from an owner is not required.

Given that Git-based items are synchronized with Ketryx when a developer finishes their work on a configuration item, the transition flow is also different: The initial state of a Git-based configuration item in Ketryx is Resolved. Similarly to Jira-based items, Ketryx will transition a Git-based item to Closed upon full approval, or back from Closed to Resolved if the item changes afterward.

8. Versioning

Every Git-based configuration item is associated with one or more commits in the Git repository.

Given a project version, the relevant commits are determined by the release ref pattern that is defined during the project creation or configuration process. For example, if the release ref pattern is set to refs/tags/v#, Ketryx considers the tag v1.0 to be the relevant commit for version 1.0. Hence, Git-based items found on the v1.0 tag will be considered active for version 1.0.

For incremental releases based on code change requests (e.g., GitHub pull requests), the relevant commit for the incremental release is the head of the source branch of the code change request.

Please see the for more information on how to work with Git repositories in Ketryx.

Ketryx Query Language

Reference of the Ketryx Query Language (KQL)

The Ketryx Query Language (KQL) is a language to query configuration items in the Ketryx Platform.

Items can be filtered based on their field values, relations, and various other metadata.

Simplified KQL vs. full KQL

Ketryx separates between "full" KQL and Simplified KQL, which is subset of KQL that focuses on filtering for item types, relations, and particular core item data. This is

When using KQL in the Ketryx web application or document templating engine, full KQL can be used
When using KQL within Ketryx organization/project configurations, only simplified KQL can be used (e.g. when setting up cross-project references)

This document describes the full feature set of KQL, but will specifically denote features that are not supported by Simplified KQL.

Examples

Some frequently used examples:

KQL

Meaning

Supported in Simplified KQL

Syntax

KQL consists of expressions which contain the following elements:

Symbols are represented by any individual tokens that are not wrapped in quotes (which would make them strings). They can not contain whitespace or certain other special characters such as (, ), :, ".
Strings are pieces of text wrapped in quotes ("...").

Type

Examples

Symbols

Symbols are identifiers that are not strings or special keywords (such as and, or, and not). Symbols can not contain the following special characters:

The following symbols are treated specially when matching items (note that these special cases are case-sensitive):

* matches any item
none matches no item
Shorthand for the id: filter:

Note that, currently, automated test executions can only be filtered using the shorthand type filter TE. Other filters do not apply to automated test executions. The matching based on TE works in simplified KQL filters, e.g., in the context of cross-project references and ; in other contexts such as the All items page, automated test executions are not included.

Besides these special cases, symbols are treated like strings and are matched against the title of an item (in a case-insensitive way).

Strings

Strings are wrapped in (double) quotes (").

Strings are matched against the title of an item, in a case-insensitive way. For instance, "text" matches any item whose title contains text, Text, TEXT, etc.

Note that single quotes (') and similar characters such as typographic "curly" quotes (‘, ”, etc.) are not treated as string delimiters in KQL. This can sometimes lead to surprising consequences when copying and pasting text in environments that automatically replace straight quotes with curly quotes.

Boolean operators

Boolean operators are evaluated in the following order of decreasing precedence: not before and before or. For instance,

is equivalent to:

Boolean operators can also be written in upper-case (NOT, AND, OR), or using the special characters ! (not), && (and), and || (or).

Boolean operator keyword

Equivalent operator character

For instance,

can also be written as:

Depending on the operand, the operators and and or can be omitted entirely (see Sequences below).

Sequences

Expressions following each other without an explicit boolean operator form a sequence. They can optionally be delimited by a comma (,).

If not indicated otherwise, the individual expressions are combined using a boolean operator, depending on the type of expressions involved:

Symbols referring to mutually exclusive filters are combined using a logical or. For instance, SAMD-1 SAMD-2 refers to an ID-based filter; since each item can only have one ID, the individual expressions are combined using a logical or, making the sequence equivalent to SAMD-1 or SAMD-2, i.e., match all items with an ID of either SAMD-1 or SAMD-2. This includes the following kinds of symbols:
- Jira work item keys (e.g. SAMD-1

This usually matches one's intuition and makes simple queries based on IDs or pieces of text more concise. However, when in doubt, one can always write queries with explicit logical operators.

An empty sequence () matches no items. However, if the overall query is empty, all items are matched.

Some filters take a sequence of symbols or strings as parameters (string lists), e.g., diff:(new,changed). These are special in the sense that they don't allow arbitrary logical combinations or complex nested expressions.

Filters

Filters allow for powerful query criteria, based on various attributes of an item and relations among items.

In the specifications below, UPPER-CASE parts denote placeholders for other expressions, typically arbitrary query expressions.

Some filters expect a string list in certain parameters, which can be a single string or symbol (e.g., just new), or a sequence of strings or symbols (e.g., (new,changed) or ("new","changed")). Symbols and strings can generally be used interchangeably; strings have to be used when referring to values that contain spaces or other special characters. (The examples in this documentation generally use the shorter symbol form if possible, and the string form otherwise.)

Users can be referenced using their full name (e.g. "John Doe") or email addresses (e.g. [email protected]). Generally, email addresses should be preferred since they are guaranteed to be unique. The special value me denotes the calling user.

`to:ITEMS`, `to:DEPTH:ITEMS`

Items with a relation to a set of other (target) items, optionally filtering for a certain level of depth.

ITEMS is an arbitrary query expression to filter for allowed targets of the relation. This expression might involve other, nested filters for relations.
DEPTH is an optional parameter to specify a restriction on the relation depth:
- *: allows any depth of least 1

The short form to:ITEMS is equivalent to to:1:ITEMS, while to::ITEMS is equivalent to to:*:ITEMS.

Note that, by default, this filter does not include the target items themselves; e.g., to:TC matches all items that have a relation to a Test Case, without including those Test Cases themselves. To include them, specify a MIN level of 0, e.g.:

To filter for particular relations, use the syntax to .

`from:ITEMS`, `from:DEPTH:ITEMS`

Items with a relation from a set of other (source) items, optionally filtering for a certain level of depth.

Other than referring to the opposite relation direction, this works just like the to: filter.

`diff:KINDS`

Not supported by Simplified KQL

Items with a difference (compared to another version) of a certain kind.

KINDS is , with the following values:
- new
- changed

`id:ID`

Items with a certain ID.

ID is a string list containing one or more item IDs, which can be one of the following:
- Jira work item key (e.g., SAMD-42)
- Jira work item number (e.g., 42)

`type:TYPES`

Items of a certain type.

TYPES is a string list containing one or more item type names or short names. In the default Ketryx configuration, the following names can be used:
- RQ = Requirement
- SW

`state:STATES`, `status:STATES`

Items in a certain state (or with a certain Jira status).

STATES is a string list containing one or more state names. In the default Ketryx configuration, the following names can be used:
- Open
- Reopened

Custom status names (if configured) can also be used.

As a courtesy, status: is an equivalent alias for state:.

`is:FLAG`

Items matching a certain (boolean) flag.

FLAG can be one of the following:
- controlled: matches controlled items
- deleted: matches deleted items

`project:PROJECT`

Items that are in the given project(s).

This can be useful to filter out items from referenced projects, as opposed to items in the current ("main") project.

PROJECT is a string list containing one or more project names or Ketryx project IDs. The special value selected denotes the current project.

`in-test-plan:VERSION`

Not supported by Simplified KQL

Items that are included in the test plan of a given version.

VERSION is a string list containing one or more version names or SemVer version numbers. The special value selected denotes the currently selected version.

`updated-after:ISO_DATE_STRING`

Items with a record creation date equals or after the provided ISO 8601 date.

Examples:

updated-after:"2024-01-01" (Date with its time set to 00:00)
updated-after:"2024-05-05T10:00" (Date with explicit time component)

`assignee:USER`, `owner:USER`

Items with a given assignee.

USER is a string list containing one or more user references, which can be given as full names or email addresses (or the special symbol me).

As a courtesy, owner: is an equivalent alias for assignee:.

`approved:GROUPS`

Not supported by Simplified KQL

Items approved by the given users or groups.

GROUPS is a string list containing one or more user references or group names. Just like in the assignee: filter, users can be referenced by full name or email address (or the special symbol me).
- owner refers to approval by the owner (= assignee) of the item.

Filter by relation

A filter of the form

queries items with a given relation to or from a set of other items, optionally filtering for a certain level of depth.

RELATION is a relation name. The following relations are supported (each specifying the "forward" relation from source to target, and the "reverse" relation in the other direction):
- contains / "is contained in" (as specified by field Contained tests)

This is similar to the to: and from: filters, but specifying a particular relation name.

Filter by field value

A filter of the form

queries items with a certain value for a given field.

FIELD is a field name, e.g., Description or "Rationale for deferring resolution". This is case-sensitive.
VALUE is a single value or a string list denoting the allowed field value(s).

Textual fields (both plain-text and rich text) are matched in a case-insensitive way. If VALUE is a list of values, all of them need to occur (somewhere) in the item's field value.

Select fields (with a predefined set of options, e.g., the Requirement type) require an exact match of the value (or one of the given values, if a list is specified).

Note that version fields, date fields, and relation fields are not supported at this point. However, relations can be queried using the syntax to .

Additional examples and explanations

Note: All examples assume the standard configuration of Ketryx. Queries could look differently if Ketryx is configured with different item type names, relations, or fields.

Item title

is a sequence of two symbols (some and text) without special meaning that are implicitly combined using the and operator, so this query matches all items whose title contains "some" and "text" (not necessarily in this order and not necessarily directly after each other), e.g., it would match a title of Requirement with some text as well as This text contains some.

To match an exact text including whitespace, use quotes (i.e., a string rather than symbols):

matches Requirement with some text but not This text contains some.

Quotes are also necessary when matching against pieces of text that have a special meaning as symbols, e.g.,

matches items with a title that contain RQ (or rq or Rq or rQ, since the matching is case-insensitive), not the item type Requirement.

Requirement or Software Item Spec

is a sequence of two symbols (RQ and SW) denoting item types that are implicitly combined using the or operator, so this query matches all items that are either a Requirement or a Software Item Spec.

This is equivalent to:

All descendants of a particular item

matches all items that have SAMD-1 as their parent or whose parent has SAMD-1 as their parent, etc., i.e., all direct and indirect descendants of SAMD-1.

This is equivalent to:

MAN-01 Ketryx Lifecycle Management

Manual for the usage of the Ketryx Platform

1. Introduction

1.1. Purpose

The purpose of this manual is to explain the ongoing usage and operations of the Ketryx Platform, a lifecycle management system built to streamline high-quality software development and support FDA software compliance and compliance with standards such as ISO 13485, IEC 62304, ISO 14971 and IEC 61508-3, among others.

1.2. Scope

The scope of this manual is the complete usage of the Ketryx Platform. This includes a description of the Ketryx Framework, a logical framework of rules and entities that are implemented within the Ketryx Platform software system.

1.3. Referenced Documents

ISO 13485
IEC 62304
ISO 14971
IEC 61508-3

1.4. Definitions and Acronyms

For the purposes of this document, the terms and definitions given in U.S. QSR (21 CFR Part 820), ISO 13485, IEC 62304:2006-AMD1, and IEC 61508-3 apply. Where contradictory, IEC 62304 and ISO 13485 prevail.

ALM: Application Lifecycle Management
QMS: Quality Management System
QS: Quality System
EDMS: Electronic Data Management System

1.4.1. Multi-Factor Authentication (MFA) Reset

When enforced in the organization, there are a couple of common scenarios where you might encounter a prompt to reset your Multi-Factor Authentication (MFA) in Ketryx:

Authenticator Removal: If you have removed or uninstalled the authenticator app linked to your Ketryx account, the system can no longer verify your identity using that method, requiring an MFA reset.
Switching Devices or Browsers: When you change machines, browsers, or use a security key-based authentication method (e.g., TouchID), the associated key might no longer be accessible. In this case, Ketryx may still display the security key as an option, but you won't be able to complete the authentication process.

You can request your organization owner to reset your MFA status. To avoid interruptions, we recommend designating at least one backup organization owner in addition to your primary owner, in case the primary owner needs to have their MFA reset.

1.5. Responsibility and Authority

The Organization shall define responsibilities by assigning Members to Groups. Authority over configuration items is provided to Members and Groups through the project’s Approval Rules, which consist of Approval Steps. These steps can be configured to require approval from either Groups or Members. By default, Ketryx is configured with approval steps based solely on Groups. The approval rules can be found under the project Settings if the Member has permission to view that information. To modify the approval rules and, as a result, the authority of your project’s QMS, you would need to have edit permissions for Approval Rules.

Ketryx comes with sensible default configurations that can cover many modern software development workflows. For responsibility and authority, Ketryx has five default groups and a set of default approval rules. Ketryx can be configured to add groups and support additional work instructions. The default groups are:

Product Managers
R&D Leads
Developers
Quality Managers

It is considered best practice to have members assigned to only one group to ensure division of responsibility. Any abstract approval structure, whether based on groups or users, can be created in Ketryx. Organization owners can create additional groups and define permissions for those who can manage groups and approval steps.

Further information on how to configure a project’s Approval Rules can be found in .

2. Ketryx

2.1. Ketryx Framework

The Ketryx Framework is an object-based, gated, risk-based product development framework for validated application lifecycle management. Users, called Members within an Organization, work collaboratively to create products, set requirements, and collect evidence that those requirements are met through the IT systems used throughout the product lifecycle. Members and Organizations are examples of two types of entities in Ketryx that can interact in a pre-specified, structured manner.

In Ketryx, Members use Configuration Items (CI) to build Systems, Sub-Systems, and Services. CIs are the atoms from which systems are built and are managed in various tools native to the given task (requirement management, source control, etc.). Each System, Sub-System, and Service is a CI, and it is managed in Ketryx as a Project. Projects can interface with other projects to create the structure needed for complex system engineering.

Members have authority and permission over CIs and their lifecycle, depending on each project’s Approval Rules. Some Members can author, review, and approve a configuration item for it to become controlled and effective. Others might only have permission to view a Project. If a Group that a Member is a part of has assigned training, Members must perform that training, or they will not be able to perform actions (i.e., approvals) as part of the Group. Specific Groups and/or Members are required to approve the release of the validated product (i.e., project version). Further details on the framework and the different entities (i.e., objects) that exist in it are provided in the following sections.

2.1.1. Entities

Ketryx has six different types of entities that interact in pre-defined ways to create the type of structure and traceability safety-critical applications require. The following are the types of entities in Ketryx, and the diagram below shows how they interact:

Organization
An Organization consists of Members who work together to create products. Each Member must have a role as either an owner or a regular member of the organization. An owner can add other members to the organization and potentially promote them to owners.
Project
A self-contained Subsystem, System, or Service and related activities that together create a product. Each Project has its own verification, validation, and release lifecycle, its own access control and approval rules, and its own versions. A project is typically done by a Product Team within an organization.

2.1.2. Configuration Items

Configuration Items can be combined within Projects to make any arbitrary System, Sub-system, or Service. CIs can govern all aspects of the Total Product Life Cycle (TPLC) and, through the Ketryx Platform, can be used to create evidence for audit or submission. Each controlled configuration item represents an approved record, and a validated system can only be created with controlled configuration items. Evidence of this controlled state can be seen in each release’s electronically signed documentation.

The following Configuration Items are available in Ketryx, each with its own Work Instruction.

Requirement
Software Item Spec
Task

Configuration Items are how members build validated systems. They utilize configuration items to construct, validate and perform change control or systems, resulting in validated products. Each configuration item represents a task or task phase, with multiple representing a series of tasks, also known as an activity.

Members perform tasks as part of the lifecycle activities of Projects. Projects can be nested within each other to form any arbitrary complex system of systems. Generally, a project can represent a System, Sub-system, or Service, which can be connected. Systems can then be validated and verified (V&V) through a Test Plan. An example of a product lifecycle that can be implemented in Ketryx is given below. The Test Plan would indicate which Test Cases need to be performed (through a Test Execution CI) and passed before product approval by the PLT.

If instead of a V-model, we look at the pre-market lifecycle sequentially, we get the following diagram, which describes the lifecycle process requested in ISO/IEC 62304. In section 5 of this manual, we will review this diagram (and section 5 of ISO/IEC 62304) in detail.

Looking at it beside the earlier lifecycle process diagram shows how the Ketryx Platform allows the development of products developed under the Ketryx Framework.

Configuration Item States

Configuration items managed through work item/task management tools (e.g., Jira) have four native states, described below. Additional states can be added.

Open - The item is proposed.

In Progress - The item proposal is being drafted into a final proposal. The ticket can be reviewed and edited.

Resolved - The ticket is in an immutable state and is pending review and signatures from relevant approval steps.

Closed - The ticket is closed, and no further actions are needed. For a design ticket, this state would mean the design is verified.

2.1.3. Components

The framework focuses on three components:

Risk Management: systematic application of management policies, procedures, and practices to the tasks of analyzing, evaluating, controlling, and monitoring risk.

Configuration Management: Configuration Management (CM) is a systems engineering process for establishing and maintaining consistency of a product's performance, functional, and physical attributes with its requirements, design, and operational information throughout its life.

Agile Software Development: Iterative and flexible approach to software development, focusing on building smaller pieces of functionality.

These three components are integrated into the Ketryx Framework, Ketryx Platform, and the way Members build validated products. Each is discussed in detail later in this manual.

2.2. Ketryx Platform

The Ketryx Platform (“Ketryx”) is a connected application lifecycle management platform that automates the Ketryx Framework. It allows teams to use portions of the Ketryx Framework relevant to their quality system and day-to-day activities.

Ketryx allows Members to easily integrate a risk-based approach into their software development tooling and centralize their work from a single source of truth. It allows teams to develop software across those tools with full traceability and visibility in a 21 CFR Part 11 validated system.

Ketryx is built on three principles:

End-to-end traceability: allowing users to understand how everything is connected
Compliant-by-design: guiding users on regulated software development
Minimalist but connected: easy to learn and build in

The Ketryx Platform consists of several interconnected modules and 3rd-party integrations, such as Jira and Git. These allow users to define requirements and enforce them across IT tools, creating complete and auditable configuration items. These can demonstrate compliance with the Total Product Life Cycle approach that is continuously recorded, viewed, used, and audited in Ketryx.

Ketryx supports the following common control use cases, with additional ones possible to add:

Design Controls: Record and manage requirements, specifications, and other design control items in Jira.
Configuration Management Controls: Record your source code, build, distribution and deployment directly from your source code management and cloud provider.
Process Controls: Following Compliant-by-Design (CbD) can be provenly enforced across IT systems. Evidence can be generated and collected to show that Design Controls have been met. Design Controls can be recorded and managed in Jira.

Ketryx easily connects to other systems providing users with a seamless, traceable experience, including guided workflows and evidence generation. The following systems are supported in Ketryx.

Source Code Repository: Any Git repository works with Ketryx. Specific advanced source code management tools and evidence collection modules currently only work with GitHub.

Task/Work Item Management: Ketryx connects to Jira Cloud through an . Once installed and connected to a Ketryx Organization, Projects created in Ketryx can be connected to Jira spaces (formerly projects). This will create Ketryx-specific workflows, work types, and screens in Jira and automatically configure the connected Jira spaces with them (unless it contains work items already, in which case the initial configuration is more manual). The Ketryx-specific Jira work types correspond to Configuration Items 1 through 11, while Software Dependencies, Cloud Dependencies, Test Plans, Versions, and Documents are primarily managed natively in Ketryx.

Cloud Deployment: Ketryx currently supports AWS as a native integration. You can still use any other feature of Ketryx and record evidence as discussed.

2.2.1 Global Data Loading Indicator

To optimize performance, Ketryx displays pre-computed data on many pages while simultaneously processing up-to-date information. A loading indicator in the top right corner indicates how current the displayed data is

When up-to-date data is still computed, the loading indicator will show nine pulsating dots:

When all data on the current page is up-to-date, the loading indicator will show a check mark:

Clicking the loading indicator will give additional information about the currentness of the shown data.

Manual ID

Manual title

Work Instruction ID

Work Instruction title

3. Risk Management

Associated Deliverable: Risk Management File, Risk Control Matrix, Risk Matrix, V&V Report

Tooling: Risk Management Screen, Risk Controls Screen, Risk Configuration Item

Members can conduct project-level and configuration item-level risk analysis. Risks in Ketryx can be used to follow an ISO 14971-like process and are based on Hazardous Situations. The focus should be on what can happen and how to prevent harm to the patient. Risk management can be done continuously in Ketryx for each successive version and each system individually and in a centralized fashion.

Each risk is managed individually as a Risk configuration item. As a whole, risks can be managed through the manufacturer’s risk management process. While the Ketryx framework provides tools and automation for risk management, management of product and none product risk is the sole responsibility of the finished product manufacturers, which should have an approved risk management plan.

For a more in-depth guide to risk management in Ketryx, please refer to manual .

4. Configuration Management

Deliverable: Design Control documents (SRS, SDS, etc.), Software Bill of Materials, Part 11 Verification Report

Tooling: Software Dependency Screen, Cloud Configuration Report, Release Configuration Item Screen, Electronic Document Management System (EDMS)

4.1. QMS Configuration Management

All QMS documents can be stored in the Ketryx Electronic Data Management System (EDMS).

4.2. Design Control Configuration Management

4.2.1. Design Control Artifacts

Design controls artifacts can be found and tracked in Ketryx through several screens and files. Relevant screens include

the Requirements traceability matrix screen,
the Graph screen (showing the architecture diagram),
the Risk management screen,
the Test management screen, and

Design control artifacts that can be exported or downloaded directly can be found in the section on .

To become controlled, each design control configuration item must undergo a design verification step that can be electronically signed. This is the design verification activity for each configuration item, which is done according to the configuration item’s pre-defined Approval Rule.

4.2.2. Software Supply Chain

Configuration management for the application software supply chain, including open source, cloud, COTS software, and other dependencies, is further explained in the .

4.3. Change Management

Ketryx takes a risk-based approach to change management. The default system configuration supports three tiers for change management: the item level change control, the structured change control using the Change Request CI, and the structured action using the CAPA CI.

The three risk-based change control levels provide users the flexibility and structure needed to perform change management in large-scale software applications. The exact usage of these depends on your organization and the context of the product you are building.

Item level change control. Completed via the configuration item's native record. This is further discussed in each item’s Work Instruction.
1. For Jira: change the status from open to In Progress, Resolved, and Closed
2. For Git:

Together these three levels of change management, the configuration item level, the Change Request level, and the Action/CAPA level, can allow users to conduct various complex change management activities, which can be used to capture all the information required by the strictest safety-critical industry requirements.

5. Application Lifecycle Management

5.1. Software Development Process

In Ketryx, software development is part of a gated product development process, with each gate having milestones and deliverables.

When building safety-critical systems across some industries and jurisdictions, it is important to ensure that the design inputs are fully defined by the design output (i.e., realized in/by the design output). As a result, before system validation, it is necessary to review and approve design-related items and the complete system sequentially, starting at the initial requirements and moving toward the final product technical requirements. This waterfall-like approach is supported by Ketryx’s gated approach while still allowing users to develop software using a variety of development methodologies, including agile-based ones. This is done by enforcing structure for deliverables and the design control management process as part of the release process.

To release software in Ketryx, validation activities must be performed as described in each release’s Test Plan. All Configuration Items that are part of the release must be placed under change control (unless they are unresolved anomalies), the software must be validated per the Test Plan, and the artifacts listed in section 7 of this manual must be generated, reviewed, and approved. Only then can the Groups relevant for Version approval review, approve, and release the software. The below figure notes the software development activities and their deliverables, as well as the audit activities Ketryx can support to ensure needed activities are performed. Further detail on the software release process is provided later in this manual and can also be found in .

Once the software is released and maintenance is required, a complementary process is used.

5.2. Default Configuration

While many aspects of Ketryx can be modified based on a company’s quality system and business activities, there are sensible default configurations built into Ketryx. These include the groups and approval rules for an organization and project, respectively.

5.2.1. Default Groups

At the core of Ketryx are the groups that different system users can be a member of. These groups represent the responsibilities users have on their journey to create validated applications.

The following Groups are defined by default:

R&D Leads
Group Description: Leads the development of software products and makes the technical decisions about the product. Confirms that specifications and the application meet the requirements.
Product Managers
Group Description: Leads product development, defines requirements and deals with complaints. Confirms that the application meets users' requirements.

5.2.2. Default Approval Rules

By default, the following Approval Steps are defined for configuration items of the respective type. Each Approval Step is based on one of the default Groups, and at least one approval is required for each step. Unless otherwise noted, items of the respective type have an Item Assignee who also needs to approve. These default Approval Rules/Steps can be changed by a user with the proper permissions in the Approval rules page under a project's Settings tab.

Requirement: R&D Leads, Quality Managers, Product Managers
Software Item Spec: R&D Leads, Quality Managers
Task: none (only the Item Assignee needs to approve)
Test Case: R&D Leads, Quality Managers, Quality Control

Further information on how to configure a project’s Approval Rules can be found in .

5.3. Processes, Tasks, Items, and Members

The Ketryx Platform facilitates product creation, management, and retirement. The Ketryx Framework is a set of rules that govern how processes, activities, and tasks can be performed on Items by Members.

Each configuration item represents the abstract notion of the system component, with each version of it a record of that configuration item. Each approval process of an item involves performing all the tasks required by that configuration item’s work instruction, which checks Ketryx’s Rule Engine and creates a controlled record. Only Ketryx can change the state of an Item to Closed by checking with Ketryx’s Rule Engine, which determines if that Item’s current attributes satisfy its description in the Quality System Format. Each Closed record is then stored in Ketryx.

The creation of a Requirement, its drafting, and approval constitutes an activity. Specifically, it is a Design Control activity that ensures requirements are developed, verified, and approved in a controlled and documented manner.

The relationship between processes, activities, and tasks is shown in the diagram below. A process is a set of integrated activities that transform inputs into outputs. An activity is a set of integrated tasks. Generally, Ketryx configuration items are tasks or activities.

Throughout different lifecycle processes, manufacturers use configuration items to manage the tasks required to create a validated system. As mentioned earlier, each configuration item has four states: Open, In Progress, Resolved, and Closed. Members must conduct tasks to move Items between the four states. For a requirement, for example, to move from Resolved to Closed, all the selected approval steps must verify the design (design verification).

For an Item to be an effective configuration item in a given Version, it must be Closed, and the Version must match its version range, as specified by the fields Introduced in version and (for long-lived item types) Obsolete in version. There are generally two categories of configuration items in Ketryx:

Long-lived item types have both an Introduced in version (the first version they are effective in, inclusive) and an Obsolete in version field (the first version they are not effective in, exclusive). These include Anomalies, Configuration Items, Requirements, Risks, Software Item Specs, Hardware Item Specs, and Test Cases. If the Introduced in version is not explicitly defined, these items are assumed to be in the first version. If Obsolete in version is not explicitly defined, these items are assumed to be in every subsequent version.
Point-wise item types only have an Introduced in version field, which ties them to the specific Version they are effective in. These include CAPAs, Change Requests, Complaints, Test Executions, and Tasks.

Note that, for Anomalies, Introduced in version denotes the first version they are known to affect, while Obsolete in version denotes the version they are expected to be resolved in.

Records of items that are deleted in Jira are still kept in Ketryx. A record that marks the deletion is created in Ketryx, which is essentially treated like an obsolete item w.r.t. release management. If the item has been in a controlled state before, the deletion marker needs to be approved (in Ketryx) for the deletion to be considered controlled, i.e. it starts out in the Resolved state; otherwise (if the item has only been in a draft state), the deletion is considered controlled right away, i.e. it is immediately Closed.

5.4. Versions and Releases

The baseline version of each release is determined based on its version number: The latest released version preceding the given version is considered the baseline. By default, Ketryx looks for a -compatible version number within a version's name to derive its version number. This can be customized using advanced setting , and in each version's settings.

Depending on the configured release controls, a version can only be released if all included items are in a controlled state.

Wherever a version can be selected (e.g., to filter items), the Current state can usually also be selected, which represents the current "draft" of design controls. This includes all items that are not marked as obsolete in any version (regardless of when they were introduced). Jira-based items on Current show the current content as you would see in Jira. Git-based items, such as SOUP dependencies, on Current are derived from the primary analyzed branch or tag (typically main or master), as opposed to the version-specific release ref pattern (such as a v1.0 tag), configured for each repository in the project settings.

5.4.1. Release types

There are three different types of releases in Ketryx:

A full release incorporates all items in their current state. For Jira-based items, this is based on the information you currently see on the Jira work item.
A patch release inherits the state of each long-lived item from its baseline version, while only for items that are explicitly marked as introduced or obsolete in the patch release (based on its version number), their current (controlled) state is incorporated.
A scoped version also incorporates only specific changes, similarly to a patch release. But instead of opting into changes based on a version number, items matching a certain filter are considered in scope for change. In addition, certain items related to any matching items can be incorporated as well, including affected or new items of Change Requests and CAPAs, affected and resolving items of Anomalies, affected items of Complaints, and risk control measures of Risks.

Patch releases and scoped versions can be used to release small, incremental changes to certain items without being impacted by modifications to other items that might happen in parallel. Scoped versions can also be created based on a selection of items to include in the scope.

5.4.2. Locking item records for release baselines

For finer-grained control over which records are used in a version, particular records of each item can be locked to the release baseline. Locked records override the automatic logic described for the different release types above.

This can be useful when starting to work on a following version while the current release is not finished yet. If you want to edit existing items without affecting the current release, you can lock their current records for this release, so that new records created based on your edits are not incorporated into the release.

To lock the current record, select items on the All items page and choose Lock selected records for this release baseline from the extended menu (...).

You can also lock a particular record from the history of each item, by navigating to its record detail page, and managing locks in the Baseline locking section. This can be useful to use a particular historic record of an item in the release baseline, when the item has already been changed in the meanwhile.

Item locks can be removed by choosing Unlock selected items for this release baseline from the extended menu on the All items page, or on the item record detail page.

Locking and unlocking records requires the Manage project permission on the project. Locking-related actions show up in the changes associated with the record as well as the project's audit change log.

You are also able to lock the ‘Last Controlled Record’ to the current release for multiple items in bulk. By navigating to the All Items page & selecting multiple Configuration Items, you will be able to lock the last controlled record of selected items. This bulk action is particularly useful when preparing a release after numerous Configuration Items have been modified, as it ensures the Last Controlled Record of the selected items is locked to the selected release version. This also helps if you forgot to bulk lock your controlled records for a version before starting to work on them again.

This action will only lock the items that have controlled records - if an item has never been controlled, it will not be locked. A warning message will display before you confirm this action.

5.4.3. Item variants

Ketryx allows you to create variants of an item. This is a powerful feature for managing situations where an item's content needs to be different in separate versions, enabling you to work on multiple versions in parallel without affecting each other.

For instance, the impact of a vulnerability might be different in a new feature version compared to an older, stable version. By creating a variant of the Vulnerability Impact Assessment, each version can have its own independent assessment, without affecting the other.

Currently, this feature is available only for Vulnerability Impact Assessments. For a detailed walkthrough of how to use this functionality, see the or .

5.4.4. Monitoring

Ketryx supports three different monitoring options that you can adjust in the settings page of a version.

Automatic (Default): The release with the highest version number according to Semantic Versioning () is considered currently active.
1. If the latest automatic release is unreleased, the most recent released version according to SemVer that was marked as automatic is considered the active version.
2. The only exception to this rule is if the previous release is manually marked as inactive. In this case, no previously automatic release is considered active, effectively disrupting the sequence.

For dependencies associated with active released versions, you will receive weekly and daily via email. Setting the monitoring option to active is recommended in case you have multiple released versions of your product running in production in parallel.

Adjusting this setting will only have effect on released versions.

5.5. Building Products

Building validated systems that can turn into products that serve safety-critical functions is a complex, detailed, and challenging endeavor. Ketryx is built to reduce the complexity and cognitive load of building such products, allowing teams to focus on what matters most.

The sections provided below are simplifications of the activities needed to produce validated systems in different industries and jurisdictions. It is expected that the company building the system/product will have the knowledge, resources, and capabilities to build such a system. As a result, the below is only the explanation of Ketryx functions related to these activities and not a description of all the necessary activities.

Additional details about releasing software in Ketryx can be found in .

5.5.1. Software Development Planning

Deliverable: Risk Management File draft

Once a new product is decided on, a project needs to be created to govern the system(s) that make up that project. As part of this process, a Product Leadership Team (PLT) shall be appointed, consisting of a Member of each of the following Groups:

Product Management
R&D Leads
Quality Management

Following the formation of the PLT, the project should start. The software development process will consist of the steps described in Figure 2. At each phase below, the activities listed will be conducted. The deliverables mentioned at the beginning of each phase can be generated, reviewed, and stored in the Ketryx Platform.

5.5.2. Software Requirements Analysis

Deliverable: System Requirement Specification

Tooling: Requirement Traceability Matrix

Members create requirements that can describe a wide variety of systems, environments, contexts, and intended uses. Each requirement is captured in a Requirement type configuration item.

Requirements can be defined throughout the software development lifecycle but must be approved and under change control before any software verification and validation activities begin. Requirements can be developed and managed in the connected work item/task management platform.

Further details on the Requirement configuration item can be found in .

5.5.3. Software Architecture Design

Deliverable: Software Design Structure Matrix, Software Design Architecture Diagram, Software Item Specification configuration item

Tooling: Architecture Module

Members realize requirements into software architecture. This can be done by creating Software Item type configuration items that fulfill the requirements and are combined together to perform different tasks and provide required features and functionalities.

Software Architecture can be defined through the software development lifecycle but must be approved and under change control before any verification and validation activities. Software architecture is defined through the Software Item Specification configuration item, and is developed and managed in the connected work item/task management platform.

Further details on the Software Item Specification configuration item can be found in .

5.5.4. Software Detailed Design

Deliverable: Software Design Specification, Software Item Specification configuration item

The detailed software architecture design (i.e., the detailed design) is developed using the Software Item Specification configuration item and is developed and managed in the connected work item/task management platform.

Further details on the Software Item Specification configuration item can be found in .

5.5.5. Software Unit Implementation and Verification

Deliverable: Code Change Review report, Testing report, Test Plan, SOUP Dependencies report

Tooling: Items screen with filter for specifications, Task, and Test Case configuration items

Software Items (i.e., blocks of code, units, modules, systems) are implemented using the Task configuration item. Tasks are created as units of work, to be assigned to a Member. For each Task, the Implemented items field shall contain which Software Item Specification or Requirement needs to be implemented during this Task. When a merge request is created, the Task item ID should be mentioned in the merge request description to create traceability between the specific merge request and the Task. When a merge request is not related to a particular Task, it may also reference the implemented Software Item Specification, Requirement, Anomaly, or other relevant configuration items directly.

Unit testing, module testing, and system testing are governed by the Test Case and Test Execution configuration items. Before the beginning of any verification and validation activities, a Test Plan can be created to define which Test Cases will be executed as part of the release. Note that if no Test Plan is configured, it is assumed that all Test Cases assigned to any CI in the release will be executed. At least all design endpoints (Requirements and Software Item Specifications with no children) will be executed.

Tasks, Test Cases, and Test Executions are developed and managed in the connected work /task management platform. Further details on the Task, Test Case, and Test Execution configuration items can be found in , , and , respectively.

5.5.6. Software Integration and Integration Testing

Deliverable: Verification and Validation Testing Report

Tooling: Testing Module

Software integration and integration testing can be performed using the same functionality described in the previous section. Further details on testing can be found in , and .

5.5.7. Software System Testing

Deliverable: Verification and Validation Testing Report

Tooling: Testing Module

Software system testing can be performed using the same functionality described in the previous section. Further details on testing can be found in , and .

5.5.8. Software Release

Software release should be conducted for each new product version. All configuration items should be placed under change control and approved. Once unit, module, and system testing are performed, all unresolved anomalies should be documented, with their Rationale for deferring resolution field filled in.

The release can only be approved if all configuration items are controlled, required records, deliverables, and artifacts have been generated and approved, and the PLT approves the release. For further information, please refer to .

5.6. Maintaining Products

At the core of Ketryx and safety-critical software regulations is the concept of change management and maintenance. While change management is addressed in earlier sections of this manual, due to its criticality to validated systems, it is again reviewed here in the context of maintenance.

Maintenance is a core part of safety-critical regulatory requirements and is commonly identified as a source of adverse events and harm. As a result, Ketryx requires that maintenance be performed in a controlled manner, using a risk-based approach through traceable configuration items. The main configuration items used as part of maintenance activities are:

Complaint
Anomaly
Change Request
Corrective And Preventative Action (CAPA)

Combined with Ketryx’s deep integration with source code, cloud, and task management systems, these four configuration items provide powerful tools for change management in complex validated systems, like cloud-based, data-driven medical software and robotics systems.

Typically, a Complaint can lead to one or more Anomalies. As part of each Anomaly activity, a problem report is documented. This problem report might lead to a Change Request or CAPA. These can get implemented across the product (e.g., source code), design controls, and the QMS through additional configuration items, like Tasks or Requirements.

Software Maintenance Planning

Software maintenance will be done on a version basis, with internal and external information and feedback leading to maintenance and modifications in the validated system.

Software maintenance (i.e., software change management) can be done on three tiers:

Configuration Item Level
Structured Change Control through a Change Request configuration item
Structured Action through a CAPA configuration item

Software maintenance can happen as a result of a wide range of factors. Additional features (i.e., requirements), also known as enhancements, maintenance to existing code, or as a response to external product feedback or adverse events. Among many things, the reason for change and approval of change depends on the intended use, the use environment, and the quality system of the system manufacturer or user. The decision to implement a change can be a result of multiple factors, for example, a desire to mitigate a source of adverse events (i.e., harm), to enhance the system with new functionality, or to correct a design flaw.

While Ketryx can be used to perform change management, the system manufacturer still must utilize their software maintenance plan for their intended use and use Ketryx’s different tools to implement the change.

5.6.1. Problem and Modification Analysis

Deliverable: Release notes, Anomaly configuration item record

In Ketryx, changes can result from external factors (e.g., customer feedback, adverse events, etc.) or internal factors (e.g., internal feedback, failed testing, etc.). These can be captured using different configuration items, most commonly the Complaint and Anomaly, but in some cases (e.g., enhancements) as a Requirement. As a result of software problems, modifications will be implemented to mitigate and, if possible, eliminate the problem. While the source of the problem can dramatically affect its criticality and priority, the process for modification is generally the same.

External problem reports will be recorded using Complaints, internal problem reports can be recorded using Anomalies. If a problem starts as a Complaint an Anomaly should be created to resolve that Complaint.
For each Anomaly a root cause investigation should be conducted. Once the root cause of the problem is discovered, a Change Request(s) or CAPA shall be created.
Following the Change Request or CAPA,

Post-Market Surveillance

Deliverable: Complaint records in Ketryx and other change-related CI records

Tooling: Complaint configuration item

Post Market Surveillance (PMS) is the process of recording, investigating, mitigating, and responding to feedback and information about products in the market. Depending on your quality system and process, this might take various forms.

In Ketryx, the PMS can be performed using the Complaint configuration item and other maintenance and change-related activities. The generic process could involve:

Recording the product feedback or adverse event using the Complaint configuration item
Depending on the type of complaint, create one or more Anomaly type configuration items related to the complaint and investigate the root cause(s) of the anomaly(s).
Utilize a risk-based change control activity to mitigate the anomaly. This would usually be done through a Change Request or CAPA configuration item.

The specific application of Ketryx tools for PMS depends on the manufacturer’s quality system.

Anomalies and Problem Reports

Anomalies (and other deviation types) and problem reports are managed as part of the Anomaly configuration item. This configuration item contains fields to both report and analyze the anomaly, as well as the underlying problem, root cause, and potential solution.

Further details on the Requirement configuration item can be found in .

5.6.2. Modification Implementation

After modifications have been implemented, each change request can be verified using a Test Case to show the change resolved the root cause.

5.7. Systems of Systems

Ketryx can be used to manage a System of Systems by structuring work into several projects and creating references across those projects. Consider watching this .

5.7.1. Cross-Project References

Before items from one project can cross-reference items in another project, the referenced project (the "target" of the relation) needs to be added in the References settings of the referencing project (the "source" of the relation). Each reference can define a particular set of referencable and incorporated items and give fine-grained control on what items are available to the referencing project.

The following sections will outline the general concepts of the referencable space and incorporated pool, including the configuration via different selection modes.

5.7.1.1. Incorporated and Referenceable items

A project reference differentiates between a set of incorporated and referenceable items:

The referenceable items represent the space of items that can be used as a reference within the referencing project
- Referenceable items will be selectable as a relation within Ketryx and other third party systems (e.g., Jira)
- As far as third party systems are concerned, only references between two Jira-connected Ketryx projects are possible currently.

In regular system-of-a-system setups, the referenceable space is commonly defined as a superset of incorporated items, but depending on the system's needs, it is also possible to define arbitrary sets based on KQL filters.

The project reference may be configured via two different configuration modes:

Filter-based selection of items in referenced projects: This mode allows defining a fine-grained scope of incorporated and referenceable items via queries.
Legacy type-based selection of items in referenced project: This mode allows defining the scope of referenceable items via pre-defined item type and relation options. This mode has been superseded by the more powerful filter-based selection mode and should not be used in new project references.

Independent of the selected mode, a referencing project may also incorporate the release documents of a referenced project, which exposes those documents in the release and the Design History File. When including transitive documents, the documents of any referenced projects of the referenced project (etc.) are also exposed.

Note that cross-project references are directed, allowing references from the referencing project (A) to the referenced project (B). To also allow references in the other direction, a "reciprocal" relation from project B to project A needs to be added.

Software Item Specs in the referencing project may refer to a referenced project as a used service, which declares a dependency on the whole service without specifying which item within the referenced project is used exactly.

5.7.1.2. Filter-Based Selection

By default, when the filter-based selection mode has been enabled, all items of the referenced project will be part of the referenceable space, and no items will be part of the incorporated pool. The filters for referenceable and incorporated items can be defined as a simplified KQL statement (i.e. may filter items based on the item types, item relations and core field values only).

Additionally, a filter-based project reference may be configured to include items from projects that are transitively referenced by the referenced project (as defined by the references within the referenced project).

5.7.1.3. Legacy Type-Based Selection

This section is intended to document legacy behavior of existing projects. For new project references, or for complete cross-project traceability across non Test Case / Test Execution items, use the filter-based selection mode instead.

By default, when the type-based selection mode has been enabled, all items of the referenced project will be part of the referenceable space, including cross-project references to Anomalies and Risks; but it is also possible to define a more granular set of relation targets:

Requirements (as parent requirements or fulfilled requirements)
Software/Hardware Item Specs (as used items)
Tested items
Tests

When tests from another project are included as referenced items, they are treated as incorporated items, and show up on the All items, Test management, and Traceability pages of the referencing project. They can also be used to create Test Executions. By default, they are not included in the referencing project's release test plan, though.

5.7.2. Cross-Project Referenced Risks and Risk Controls

Given a project (A) that references another project (B), Ketryx will include any references and item details of risks and risk controls from project B in project A in the following areas, depending on the selected project reference mode:

Web pages
- Risk management page
  - Filter-based selection mode: All the risks that are part of the incorporated pool are shown

Ketryx includes risks and risk controls from project B in project A by principle of tracing, i.e. identifying relevant items to include by following a chain of risk control and 'introduces risk' relations that originate in project A (as defined by its configured referenceable space of items). Furthermore, any referenceable Test Cases (and resulting Test Executions) that test an item in this relations chain will be included in project A.

5.7.3. Version-specific Settings

For each version of the referencing project, a specific used version of each referenced project can be defined in the (referencing) version settings. This allows "locking in" a particular used version, and informs which record to show for each referenced item (which is particularly relevant if the title of the item changes over time). By default (if no specific used version is explicitly defined), the latest version of the referenced version will be used.

When showing cross-project references in release documents, the referenced project along with its used version (if explicitly defined) is shown as well.

5.7.4. Systems, Sub-systems, Services

Complex systems are usually structured in several layers, as follows (from higher to lower level):

a System consisting of one or more of the processes, hardware, software, facilities, and people, that provide a capability to satisfy a stated need or objective
Sub-systems, integrated collections of software items or hardware items organization to accomplish a specific function or set of functions
Services, self-contained and validated systems with specific predefined interface requirements

Typically,

higher-level ("parent") projects would incorporate the release documents of lower-level projects and reference used items in the lower-level ("child") projects (or reference a lower-level project "as a whole", i.e., as an opaque service), while
lower-level projects might reference requirements in the higher-level projects.

See the step-by-step guide about for detailed instructions.

5.8. Differentiating Regulatory Regions

Ketryx supports building products for different regulatory regions, and similar cases where different variations of quality documents need to be produced. A "region" could be a geographic region such as EU vs. US, or a more abstract distinction such as Customer X vs. Customer Y.

At a higher level, different projects can be used for different regions, each having their own lifecycle and release documents. For instance, an EU-specific service could be maintained as its own project, with other projects referencing it as a used service as described .

At a lower level, individual configuration items can be "labelled" with one or more regions, which makes them specific to those regions. Moreover, certain release documents can be configured to be region-specific. Region-specific release documents only contain items that are explicitly marked for their respective region, as well as region-independent items (not marked with any region).

The relevant are (to define the set of available regions in a project) and . For other use cases, the field Regions can also be renamed, using the advanced setting .

5.9 Audit change logs

Besides tracking changes of the actual work items, Ketryx is also capable of tracking changes to the Ketryx configuration itself to establish audit trails on the process administration level.

Audit change logs are captured either on the Ketryx organization or project level and include the following information:

Date and time of the change
Author of the change
Change type category
Change content to describe the details of the change (as JSON)

To view and download the Audit change logs for the current organization, navigate to Organization >> Audit change logs.

To view and download the Audit change logs for a project, navigate to [Project] >> History >> Audit change logs.

On each page, the data can be downloaded as a separate Excel file.

6. Step-by-step starter guide

6.1. Setting up an Organization

6.1.1. Step 1. Log into Ketryx

Log into the Ketryx platform (e.g., )

6.1.2. Step 2. Add members

Go to Organization.
Here you can change your organization name.
Go to Members. Here you can add users to your organization using the Invite member button. You will need a member's full name, email address, and role in the organization to invite them.

6.1.3. Step 3. Create groups

Go to Groups. You can add Groups as needed using the Create group button, but the default configuration comes with six Groups that would fit most software development workflows.

6.1.4. Step 4. Assign members to groups

Go to a specific group's edit page using the Edit button.
You can add users to the groups using the Add user or group button and selecting the desired user or group from the dropdown menu.

6.2. Setting up a Project

6.2.1. Step 1. Create a project with repositories

In the Ketryx Projects dashboard, select the Create project button.
Fill out the Name field for the project.
Fill out the Repository URL field. You can add an additional repository using the Add another repository button or add multiple repositories simultaneously using the Add batch button.

6.2.2. Step 2. Add a repository to an existing project

In an existing project, navigate to Settings.
For projects that already have repositories, use the Add another repository or Add batch button. For projects without repositories, use the Add repository or Add batch button.
Use the Save button to save the changes.

6.3. Connecting to Task/Work Item Management Tool

6.3.1. Step 1. Log into Jira

Log into your Jira organization (e.g., your-company.atlassian.net)

6.3.2. Step 2. Get the Ketryx app

Go to Explore more apps in the Apps dropdown menu.
Search for 'Ketryx'.
Add the Ketryx for Jira App.

6.3.3. Step 3. Connect a project to a specific Jira space

In the Ketryx Project dashboard, select the Create project button.
Fill out the name of the project.
Select the specific Jira space from the dropdown menu. Note that a Jira company-managed space must be used when integrating with Ketryx - Ketryx does not support integration with Jira team-managed Projects.

6.4. Setting up Cross-Project References for a System of Systems

This guide shows how to set up an interconnected System with a Sub-system and a Service used by it, and generating documents as described by section .

6.4.1. Step 1. Create and connect projects

Create a Jira space for the System and a corresponding Ketryx project connected to it.
Create a Jira space for a Sub-system and a corresponding Ketryx project connected to it.
Create a Jira space for a Service and a corresponding Ketryx project connected to it.

6.4.2. Step 2. Create and connect items

In the System Jira space, create a Requirement System Requirement.
In the Sub-system Jira space, create a Requirement Sub-system Requirement.
Add the System Requirement to the Parent requirements of the Sub-system Requirement.

6.4.3. Step 3. Create and associate versions

In the Service Ketryx project under Releases, create new versions 1.0, 1.1, and 2.0.
In the Sub-system Ketryx project under Releases, create a new version 1.0.
In the Settings for the Sub-system version 1.0, set the referenced project version for the

6.4.4. Step 4. Create release documents

On the Documents page for the Service version 1.1, generate the System Design Specification. (This document will essentially be empty, since the project does not contain any items. This is just to highlight that the document will also be exposed in the other projects.)
On the Documents page for the Sub-system version 1.0, generate the System Requirements Specification and the System Design Specification.
Note that the documents contain cross-project references, along with version numbers where specified.

6.5. Connecting to Cloud Provider

Further detail on connecting to a cloud provider (currently, Ketryx only supports AWS) can be found in .

6.6. Setting up Git-based configuration items

Please see for step-by-step instructions on how to set up Git-based configuration items.

7. Records and Artifacts

Through Ketryx, teams can collect evidence and establish processes across their IT systems to meet regulatory requirements. Part of this regulatory requirement is to produce records and artifacts that proper design, development, distribution, deployment, and maintenance processes have been conducted.

This can include Quality Management System artifacts as well as Design Control artifacts and Change Control artifacts. The diagram below shows which artifacts can be created. The list below provides further detail about each artifact that can be automatically produced in Ketryx. Many other artifacts are possible to create, and the Ketryx team would be happy to support your journey of building. Please for further information about artifacts.

7.1. SOUP dependencies

The Software Bill of Material Report covers software application dependencies both from open-source package managers and internally or manually entered information.

7.2. Traceability matrix

The Requirement Traceability Matrix shows that all tested requirements are traced to specifications and test cases.

7.3. Risk management file

Risk management plan, risk assessment demonstrating that risks have been appropriately mitigated, and risk management report.

7.4. System requirements specification

The complete documentation describing the needs or expectations for a system or software, presented in an organized format and with sufficient information to understand the traceability of the information with respect to the other software documentation elements (e.g., risk management file software design specification, system and software architecture design charts, software testing as part of verification and validation).

7.5. Software Design Architecture Diagram

The software design architecture diagram displays Software Item Spec and Hardware Item Spec Configuration Items in a tree structure. Child-Parent relationships between Software Item Specs are defined by the Parent software items field and represented in the architecture diagram as solid arrows. Child-Parent "uses" relationships between Software Item Specs and between Software Item and Hardware Item Specs are defined by the Used items field and represented in the architecture diagram by a dotted arrow annotated with "uses". The color coding of the blocks in the architecture diagram is defined below.

7.6. System design specification

The complete documentation, including sufficient information that would allow the FDA to understand the technical design details of how the software functions, how the software design completely and correctly implements all the requirements of the SRS, and how the software design traces to the SRS in terms of intended use, functionality, safety, and effectiveness.

7.7. System design structure matrix

7.8. Unresolved anomalies

List of remaining software anomalies (e.g., bugs, defects) annotated with an explanation of the impact on safety or effectiveness, including operator usage and human factors, workarounds, and timeframe for correction.

7.9. Test plan

The test plan a validated system was tested against. The test plan must be approved before testing should start.

7.10. Testing report

Description of the testing activities at the unit, integration, and system levels. System level test case including expected results, observed results, pass/fail determination, and system level test report. unit and integration level test cases, including expected results, observed results, pass/fail determination, and unit and integration level test reports.

7.11. Cloud configuration report

The Software Bill of Material Report covers cloud dependencies and their exact configuration during V&V.

7.12. Code review report

Report with all the code comments.

Document Templating

Reference of the document templating mechanism in Ketryx

Ketryx can generate highly customizable documents based on user-managed templates in the form of Word or Excel files.

Getting started

To get started with custom templates in Ketryx:

Navigate to a project's Documents page
Create a folder called Templates
Create a folder called Release inside the Templates folder
Upload the sample file sample-template.docx into the Release folder

Create a few Requirement items and a new version, and navigate to the version's Documents page. The document sample-template.docx should show up as another release document that can be generated and approved.

For a demonstration of document templating, utilizing many of the concepts discussed on this page, see our and video guides.

Template locations

Templates are managed in dedicated folders in the Documents section:

Templates/System/[name].{docx,xlsx} with [name] being the name of a system document type, to override the built-in rendering of those documents
Templates/Release/[name].{docx,xlsx} to add a custom release document with an arbitrary name to each (unreleased) version
Templates/Milestones/[milestone]/[name].{docx,xlsx} to add a custom document with an arbitrary name to milestones that match the name [milestone]

The following system documents can be overwritten inside the Templates/System folder:

Authority Matrix
Change Management File
Change Request Verification Report

Template-based release documents are considered out of date when any active records in the relevant project and version change. This may result in documents being indicated as requiring an update, even if regenerating them does not ultimately result in different document content. If this enforcement is too strict, the release control Require up-to-date release documents in the project settings can be deactivated.

Standard example templates

The templates at the are designed to closely resemble the out of the box release documents. There are also templates that utilize the feature to draft natural language summaries within the framework of the out of the box release documents.

If you would like to make small changes to the standard documents or just need a place to start, you can place these files in your project as specified in .

Template tags

A template can be a Word or Excel file with any user-defined content. Certain tags delimited by {...} are recognized by the Ketryx document generator and can be used to insert dynamic data from a Ketryx project into the document. The template syntax is inspired by the template language.

Data

{name}: insert template variable name
{project.id}: insert the property id of an object project

Rich-text variables - usually suffixed by *Content - contain HTML content which can be rendered as a block using ~~ or as an inline element using ~. I.e., use HTML for a single word within a sentence, as opposed to the entire paragraph. As example, please refer to .

Conditions and loops

{#condition} … {/}: insert the block within if the given condition is true
{#items} … {/}: loop over a list of items, inserting the block within for each of them

Conditions and loops are expressed using the same template syntax. Whether data is looped over depends on whether it is a list.

In the block inside a loop, the properties of the item that is currently iterated over become available as template variables. Example (showing the id of each of the iterated items):

The item as a whole object is available using the special syntax . (a literal dot).

Loops can be used in tables (including Excel files) to create multiple rows, by putting the starting tag (e.g., {#items}) in the starting cell, and the ending tag {/} on another cell to right in the same row. Example:

The ending tag {/} is shorthand for repeating the full expression as in {#items} … {/items}.

If a variable is not set, a corresponding condition hides the contained block. This can be used to "comment out" a part of a document. Example (assuming there is no variable HIDDEN defined):

Variable assignments

{$SET var = value}: set the variable var to the given value

Querying items

{$KQL items = query}: resolve the query query and assign the resulting list of items to the template variable items
{$KQL @version:version items = query}: resolve the query query for the given version (specified by its Ketryx ID or by its full name)

Examples:

Each item in the resulting list has the data type .

$KQL expressions are only supported at the "top level" of the document structure, not inside other loops or conditions.

Traceability matrices

{$TRACE rtm}: stores data from the project's requirements traceability matrix in the template variable rtm
{$TRACE @version:version rtm}: compute traceability for the given version (specified by its Ketryx ID or by its full name)
{$TRACE rtm: extraConfigName}: uses the "extra" traceability configuration with the name extraConfigName

Example:

The resulting object has the type .

$TRACE expressions are only supported at the "top level" of the document structure, not inside other loops or conditions.

Expressions

Conditions (as in {#expr}) and some filters (such as where : expr) involve expressions. Expressions may involve constants (e.g., "John", 42) as well as access to template data and properties (e.g. project.id). They may contain the following operators:

ternaries: a ? b : c
equality/inequality: a == b, a != b
relational: a > b, a < b, a >= b

Parenthesis can be used for grouping, to enforce a particular operator precedence.

Filters

Filters can be used to transform data before it is displayed or used in a condition or loop.

Filters are applied to values using the | operator, potentially followed by one or more arguments separated by :.

The following filters are available:

`datetime`

value | datetime: renders the date/time value in the default format
value | datetime:"yyyy-MM-dd": uses the specified format, based on the given
value | datetime:"yyyy-MM-dd":"US/Eastern": uses the specified format and timezone, based on the given

`where`

items | where:'...': filter the given items based on the given filter ; the expression can refer to properties of each item

Example:

`sort`

items | sort:'...': sort the given items based on the key determined by the given

When using this to sort by a string, there is no numeric collation and file_100.docx would be sorted before file_11.docx. To sort using numeric collation use sortByNumericTextField.

Example (sorting items by their id):

`sortByNumericTextField`

items | sortByNumericTextField:'...': sort the given items based on the key determined by the given

When using this to sort by a string, numeric collation would sort file_11.docx before file_100.docx.

Example (sorting items by their id):

`reverse`

items | reverse: reverse the order of the given items

Example (sorting items by their id in reverse order):

`group`

items | group:'...': group the given items based on the key determined by the given ; the resulting list will contain entries with properties groupKey (the unique key of the group) and groupItems (list of items within that group)

Example (grouping items by their Requirement type and showing the item IDs in each group separately):

`at`

items | at:N: returns the item at index N in the given list of items; the index is 0-based, so 0 denotes the first item; negative indices count from the end, so -1 denotes the last item
object | at:"...": returns the value for the given key in an object such as an ItemRecord's fieldValue object; this could also be done using "dot" access (object.property

Example (accessing an object property for each vulnerability, equivalent to info.summary):

Example (accessing a traceability column with a key containing a - dash):

`count`

items | count: returns the number of items in a given list or properties in a given object

`join`

values | join: returns all the values in a list concatenated, using ", " as the separator between them
values | join:"...": uses the given separator string between values in the list

Example (rendering list of items using a custom separator):

`inMilestone`

item | inMilestone: determines whether an item is in the document's milestone

Example:

If the document is not generated for a particular milestone, inMilestone returns true.

`inRegion`

item | inRegion: determines whether an item is in the document's region

Example:

If the document is not generated for a particular region, inRegion returns true.

`itemContent`

{~~ item | itemContent}: display the given item using the standard Ketryx rendering
{~~ item | itemContent:"HEADINGS +2"}: shift the levels of headings in item content by 2 levels, to account for nested headings in the template itself while maintaining a sensible navigation hierarchy
{~~ item | itemContent:"OMIT Context,Requirement type"}: omit the fields Context

Example:

Note the use of . to refer to the currently iterated item, and the use of ~~ to render rich-text (HTML) content. If you omit the ~~ prefix, you might see raw HTML code in the generated file.

`createMap` and `getFromMap`

createMap creates a hash map and getFromMap allows getting items from that map.

createMap:<keyProperty>:<conflictResolutionMode> takes two parameters. The first parameter is a string that describes the property that will be used as the map key. The second property is either "first" or "last" and denotes whether the first or last item should be part of the map when duplicate keys are encountered.

getMap:<key> takes a single value as a parameter and returns the value associated with that key or null if there is no value associated with that key.

Example:

Inserting other documents

{:include $DOC path}: include the EDMS document with the given path
{:include $RELEASEDOC name}: include the release document with the given name
{:include $RELEASEDOC milestone / name}: include the milestone document with the given

Examples:

Template variables are also available in the specified path with a $ prefix. However, arbitrary expressions are not supported, to avoid ambiguity with regards to where the expression would end. This can be circumvented by assigning an expression to another variable using $SET and using that in the included document path.

Included documents inherit the styling of the containing template document, including any named . For instance, paragraphs using the Normal style in the included document will be formatted according to the definition of the Normal style in the template.

Summarizing items

This is an experimental Assistant feature based on an LLM and not validated. Use at your own risk. Always manually check if summaries are accurate.

The $SUMMARIZE command allows summarizing an array of objects of the type into a textual summary using an LLM. This command is only available for projects that have Enable AI setting turned on in advanced settings.

{$SUMMARIZE mySummary = itemRecords:myItems}: summarize the item records saved in the variable myItems and store the result in the variable mySummary
{$SUMMARIZE mySummary = itemRecords:myItems totalWordTarget:200}: summarize the item records saved in the variable myItems with a total target of 200 words

Example:

Adding an @ symbol before the $KQL and $SUMMARIZE commands will prevent them from leaving an empty line. Without using the @ symbol, we would have to write all three commands into a single line, which hurts readability.

Template data

Templates receive data based on the containing project, version, etc. See the section on below for more information about each type and its available fields.

Variable

Type

Description

In addition, templates may query for certain items in a project using the $KQL tag (as explained ).

async variables

All variables marked as async are asynchronously resolved. These variables cannot be used as sub-parts of other . They have to be output directly or assigned to a variable first using the .

Data types

Data in templates consists of objects (with certain properties), lists, strings, numbers, and dates. The following object types may appear.

`Organization`

Property

Type

Description

`Project`

Property

Type

Description

`ProjectReference`

Property

Type

Description

`Version`

Property

Type

Description

When accessing version information through vulnerability templates (via project.version), the scopeDescription field is not available. The version object in this context only contains id, name, and versionNumber.

`Milestone`

Property

Type

Description

`MeetingNote`

Property

Type

Description

`Document`

Property

Type

Description

`Item`

Property

Type

Description

`ItemRecordCore`

The core data for an item record contains the following properties:

Property

Type

Description

For controlled records, controlledRevision counts the number of controlled records so far (starting with 1 for the first controlled record), and uncontrolledRevision is 0. For uncontrolled records, controlledRevision is the controlled revision counter of the upcoming controlled revision (i.e., the controlled revision worked on towards), and uncontrolledRevision counts the number of revisions since the previous controlled revision. These counters can be used to establish a record numbering scheme such as 1-1 (first draft towards the first controlled record), 1-2, …, 1-0 (first controlled record), 2-1, etc.

Some other properties that are more expensive to compute are only exposed under , to improve performance and avoid a potential infinite recursion.

`ItemRecordFull`

A full item record contains all the properties from , plus the following:

Property

Type

Description

The keys in the objects fieldContent, fieldValue, fieldChanged, and fieldContentDiff are field names, where spaces are replaced by underscores (_), e.g., Rationale_for_deferring_resolution.

The values in fieldContent and fieldContentDiff are pieces of rich-text (HTML) content that need to be rendered with a ~~ prefix, similarly to the filter. Example:

The raw Xray data exposed in xrayData is not currently documented in detail, as it might change depending on their data structure.

`Comment`

Property

Type

Description

`Attachment`

Property

Type

Description

The value in renderedContent is a piece of rich-text HTML that can be rendered with a ~~ prefix, similarly to the filter. If isImage is true, then {~~renderedContent} will render an image; otherwise, it will render a link to the resource, using the filename as the displayed text.

`TestRun`

Property

Type

Description

`TestStep`

Property

Type

Description

Content fields such as actionContent, dataContent, resultContent, actualResultContent, commentContent are pieces of rich-text HTML that can be rendered with a ~~ prefix, similarly to the filter.

Actual results and evidence are only available for steps on a , but not on the of the underlying Test Case.

`Iteration`

Property

Type

Description

`IterationParameter`

Property

Type

Description

`IterationStepResult`

Property

Type

Description

`IterationDefect`

Property

Type

Description

`Relation`

Property

Type

Description

`TraceabilityMatrix`

Property

Type

Description

`TraceabilityCheck`

Property

Type

Description

`TraceabilityRow`

Property

Type

Description

To access the values of columns using dot property access (e.g., columns.useCase), make sure they don't contain special characters such as spaces or -. Otherwise, direct property access does not work, and the filter should be used instead.

When using groupedRows, this structures each column as an object. Because of this, each column must be looped over.

`TraceabilityCell`

Property

Type

Description

In a groupedRows loop, use itemRecords instead of itemRecord and testStatuses instead of testStatus. This syntax is to represent the array structure inside the specified trace column that is created when using groupedRows instead of rows.

`TestStatus`

Property

Type

Description

`AutomatedTestExecution`

Property

Type

Description

`ApprovalData`

Property

Type

Description

`User`

Property

Type

Description

`TrainingStatus`

Property

Type

Description

`TrainingStatusDocument`

Property

Type

Description

`TrainingDocument`

Property

Type

Description

`Vulnerability`

Property

Type

Description

The value of descriptionContent is a piece of rich-text (HTML) content that needs to be rendered with a ~~ prefix, similarly to the fieldContent field of and the filter. This is the HTML version of the raw value of info.description.

`VulnerabilityInfo`

Property

Type

Description

The originalSeverity is set when the severity of the vulnerability was overwritten by a . It is not available when accessed through .

`VulnerabilitySeverity`

Property

Type

Description

`Dependency`

Property

Type

Description

`Library`

Property

Type

Description

Standard templates

When using the standard templates below (unlike the out-of-the-box documents), you will need to manually update the table of contents after generating the document and re-uploading it. If this is cumbersome, it is possible to build the table of contents in a lower-level way. The "System Design Specification with Automatic ToC" document shows the implementation of this method. .

As an example, an automatic, lower-level implementation of the table of contents exists in the version below of the System Design Specification

AI Templates

Additional templates

Template Approval and Revision Control

The Require controlled templates setting ensures that only officially approved templates can be used for document creation. This setting is located in the Document Configuration section of your .

We recommend setting this to 'yes' once you are satisfied with the current version of your templates and wish to approve them and maintain that approved state.

Note on revisions: When this setting is active, uploading a revision of an already-approved template will not make it immediately available for creating new documents. The system ignores unapproved drafts, and the last controlled (approved) version remains in use. The new version must first complete the required approval workflow before it replaces the previous controlled version on the Release Documents screen.

Record Change and Deletion Approval

Items marked for deletion are not immediately removed from Ketryx. The deletion of a record is treated as a formal change to the record, and this change must be approved by authorized users before Ketryx can finalize the removal. This process is essential for ensuring that all record destruction is tracked in the audit trail for compliance purposes.

Advanced Settings

Reference of advanced settings for Ketryx organizations and projects

Ketryx is highly configurable using advanced settings at the organization and project level.

To access or change the organization-level settings (under Organization > Advanced), you need to be an organization owner. You can also change project-level default settings at the organization level; projects will inherit these defaults for each setting, unless the setting is explicitly defined at the project level.

To change the project-level settings (under a project's Settings > Advanced), you need to have the Manage project permission.

Keep in mind that configuring these advanced settings incorrectly can have undesired consequences for your configuration items, Jira configuration, and member authentication. Proceed with care. When in doubt, please contact Ketryx Support. By design, not all internal settings are exposed. Also note that some parameters might change in future releases.

Advanced settings are generally specified as JSON values. Watch out for proper delimiters, punctuation, and nesting when editing these values.

Some settings involve internal IDs (e.g., for item types, document types, or field keys). These IDs are documented in the section at the end of this reference.

Global item configuration

Item type names

Mapping of standard item type names (e.g. "Requirement") to user-defined custom names (e.g. "Feature").

This is commonly used in combination with custom settings for Item type short names and Superseded item types.

Warning: If connected to Jira (and not in read-only mode), Ketryx will change some settings (e.g. icons) of issue types matching the names of the configured item types. This will result in a global configuration change in a connected Jira instance.

Use the item type name "Feature" instead of "Requirement"

Item type short names

Mapping of standard item type names (e.g. "Requirement") to user-defined custom short names (e.g. "FEAT").

Note that the standard type name (e.g. "Requirement") is used even if the type has been renamed (e.g. to "Feature") via the Item type names setting.

Note: The given short names must be unique.

Use the short names "FEAT" for Requirements

Superseded item types

For each (custom) issue type name, a list of issue types it supersedes (if any). When a superseded issue type exists, it will be renamed to the new name (e.g. "Requirement" -> "Feature"), rather than creating a new issue type.

This is only effective in combination with a setting for Item type names. It only affects the Jira configuration process in case the new issue type does not exist yet. If both the previous and the new issue type exist already, the previous issue type will not be removed or renamed.

Warning: This will result in a global configuration change in a connected Jira instance.

Rename the "Requirement" issue type to "Feature"

Field names

Custom name of each field, as a mapping from system field keys to custom names.

This can be used in combination with Superseded field names when switching from one custom name to another custom name.

Warning: Fields with custom names are created (or updated) as custom fields in Jira, rather than using the fields provided by the Ketryx Jira app. Previous field values might have to be migrated from the previous field to the new field in Jira (Ketryx will not perform this Jira data migration automatically).

Note that, by default, Ketryx will not change the available option values for such custom fields, neither the default values nor custom values defined via Select field options. When editing such items in Ketryx, synchronizing changes to Jira might fail if the used values are not configured manually in Jira.

Rename "Regions" to "Regulatory regions"

Field descriptions

Custom description of each field, as a mapping from system field keys to custom descriptions.

Add description to the "Regulatory regions" field

Superseded field names

For each field key with a custom name, a list of field names that it supersedes (if any). When a superseded (custom) field exists, it will be renamed to the new name, rather than creating a new field.

This is only effective in combination with a setting for Field names. It only affects the Jira configuration process in case the new field does not exist yet. If both the previous and the new field exist already, the previous field will not be removed or renamed.

Note that this can not be used to rename an app field to a custom field (only from one custom name to another custom name).

Warning: This will result in a global Jira configuration change.

Select field options

Mapping from select field keys (e.g. "capaType") to their custom configuration, which allows to override the name of individual options or to remove some options.

The name of each option needs to unique among the options for a given field.

When mapped to null, an option is not exposed to the user.

Note this mechanism can not be used to add new options.

Warning: When connected to custom fields in Jira (via the Field names setting), changing this setting will affect the global Jira configuration of those custom fields.

Rename the "Backend" option for the "CAPA type" field to "Server"

Remove the "Backend" option for the "CAPA type" field

Item fields

Mapping from standard item type names (e.g. "Requirement") to a configuration of fields to show for such items.

Note that this will affect the corresponding Ketryx screen configurations in Jira.

Configure Requirement item fields

Custom item fields configuration

Configuration of custom fields to allow them to be synced with Jira and edited them on the Ketryx side.

Fields are not editable on Ketryx by default. Ketryx expects fields to be configured on Jira manually by the user beforehand.

This configuration supersedes Extra field names in the Project item configuration as it has the same baseline functionality, but allows configuring fields to be editable as well.

The type LEGACY_INFER_READONLY treats the field the way the current Extra field names setting treats them. They are only read from Jira, but not written back. When displaying the field its type will be inferred from the data received from Jira. This type is not recommended for new fields and only exists for compatibility reasons.

RICH_TEXT: Rich text fields for formatted content.

SHORT_TEXT: Short text fields for plain text input.

SELECT: Single select fields with predefined options.

MULTI_SELECT: Multi-select fields with predefined options.

DATE: Date picker fields.

DATE_TIME: Date and time picker fields.\

Track various fields in Ketryx

Relation names

How to map relation names to Ketryx relation types when fetching data from Jira. There can potentially be several Jira relation names mapped to the same Ketryx relation.

Note that the direction of the relation in Jira ("inward" vs. "outward") does not matter, as long as the name matches.

Ketryx has a default mapping for relations names, automatically matching Jira links with names that are exactly what is listed in parentheses to the corresponding Ketryx relation. For example:

A Jira link called "affects" will be read as the Ketryx relation AFFECTS
A Jira link called "tests" will be read as the Ketryx relation TESTS

Use the name "is child of" instead of the default relation name "has parent"

Xray

Xray-specific configuration.

This can be used to configure custom status names (other than the default "PASSED" and "FAILED"). For each Ketryx status ("pass", "passWithException", "fail"), a list with an arbitrary number of Xray status names (including potentially an empty list) can be configured.

Configure custom status names together with default names used in Xray

Configure custom status names used in Xray

Custom document types

A list of custom document types to provide better flexibility in managing documents in your projects' EDMSs.

Any types defined here will have their own approval steps (configured on each project's "Approval rules" page) and they will be selectable for all EDMS documents in every project.

NOTE: Changing the "name" of any type will effectively remove the old type and create a new one with the new name. No existing documents with the old type will be automatically transferred over to the new type.

Add custom document types for Manual and SOP

Custom item types

See our for more information.

A list of custom item types to provide better flexibility in managing the different types of configuration items in your project.

Any types defined here will have their own approval steps (configured on each project's "Approval rules" page) and they will have the Ketryx default workflow.

NOTE: Changing the "name" of any type will effectively remove the old type and create a new one with the new name. No existing items with the old type will be automatically transferred over to the new type.

NOTE: The given names and short names must be unique.

Add custom item type that can be edited in Ketryx

Enable Jira configuration

Whether to push Ketryx configurations (item types, screens, workflows) to a connected Jira instance. Individual projects can also be configured to actually use this configuration or not, using the setting Use Ketryx-specific Jira configuration. Enabled by default.

Maintain Jira fields

Whether to maintain Ketryx-defined Jira fields in a connected Jira instance. Enabled by default.

External user email mapping

Map users from external systems to Ketryx users, based on their email address. Supported by select integrations only (currently Jama).

Map external user identifier to Ketryx user email

Show withdrawn vulnerabilities

Whether to show withdrawn vulnerabilities in the vulnerability management feature. Disabled by default.

Custom relations

See our for more information.

A list of custom relations to provide better flexibility in managing the relations between different types of configuration items in your project.

direction is either "upstream" or "downstream". Defaults to "downstream". sourceItemTypes is an array of item type names for the item types that the relation is defined for. targetItemFilter is a KQL filter that is used to find the possible target items for the relation.

NOTE: All fields (including the object key) must be unique for each custom relation.

Custom SW -> HW relation

Authentication configuration

Authentication providers

Custom authentication providers for this organization. Supported properties are email, okta, and customOAuth.

This needs to be configured in combination with a custom email domain for this organization (managed by Ketryx Support).

1. Okta Authentication:

Create a new App Integration in your Okta instance and configure it in the following way:

Use "OIDC - OpenID Connect" authentication with the application type "Web Application"
For Grant type, choose "Client acting on behalf of a user" via an "Authorization Code"
Set the Sign-in redirect URL to https://app.ketryx.com/api/auth/callback/okta

Configure Okta authentication (based on a CLIENT_ID and CLIENT_SECRET retrieved from Okta, and an appropriate Okta URL)

Allow authentication via Okta in addition to email-based authentication

Allow authentication via Okta and disable email-based authentication

Other OIDC-compliant Authentication:

For authentication via another OpenID Connect-compliant provider, such as Azure AD or Microsoft Entra, follow the following general steps on the OIDC provider side:

Perform the necessary steps on the provider side to register a new application.
Set the Sign-in redirect URL to https://app.ketryx.com/api/auth/callback/CUSTOM_OAUTH_ID. (Note: CUSTOM_OAUTH_ID can be set to any value as long as it matches the value set in the OIDC provider.)
Set the Sign-out redirect URL to https://app.ketryx.com . (Note: if using another domain, edit the Sign-in redirect URL and the

Configure OIDC-compliant authentication (based on a CLIENT_ID and CLIENT_SECRET retrieved from the provider, and an appropriate URL):

Allow authentication via OIDC in addition to email-based authentication

Allow authentication via OIDC and disable email-based authentication

Notes:

If email-based authentication is disabled and users face issues with SSO, please reach out to the Ketryx Client Operations or Support departments for us to reset the email property to true .
By default, Ketryx supports login via email, Google and GitHub. However, once custom authentication methods are configured for an organization's domain, only those explicitly configured methods will be available to users logging in with email addresses from that domain.

Project item configuration

Issue mapping

Mapping from Jira issue types to Ketryx items. This array of mapping entries is traversed in order, and the first match is taken; so there can potentially be several mappings from the same Jira issue type or to the same Ketryx item type (based on different other criteria, such as labels). If there is no match, the Jira issue is not synchronized to Ketryx.

If multiple labels are specified in a single mapping entry, all of them need to match for the mapping to be effective. To specify several labels where any of them should be mapped to a certain item type, use distinct mapping entries.

In addition to inferring a certain item type, field values can also be predefined for each mapping:

fieldValues defines values that are always set, regardless of any explicit value defined on the Jira issue.
fieldDefaults defines values that are only set if there is no explicit value defined on the Jira issue.

Each of these properties is an object, mapping internal field keys (e.g. description for built-in fields or extra:My custom field for extra custom fields) to values as they would be retrieved from Jira.

An itemType of CUSTOM can be used to define a custom item type in Ketryx, along with an itemTypeName to specify its actual name. Such custom item types are considered "unchecked", i.e. they are not required to be controlled.

Map issues of type "Folder" or "Epic" to Requirements

Map Stories with the "Ketryx" label to Requirements

Map Stories with the "Ketryx" label to Requirements, and (more specifically) Stories with the label "UseCase" to Requirements with a type of "Use case"

Map the native Jira parent-child hierarchy field per child item type

Status mapping

Mapping from Jira status names to Ketryx item states (OPEN, REOPENED, IN_PROGRESS, RESOLVED, or CLOSED).

Map the status "Backlog" to the Ketryx state Open, and "Done" to Resolved

Jira field mapping

Mapping between Jira field names and Ketryx system field keys (or ignoring certain Jira field values).

Jira fields are identified by their user-facing label, whereas Ketryx fields are identified by their internal field key (e.g. initialOccurrenceProbabilityText), similarly to the Issue mapping setting.

This affects both reading fields from Jira as well as writing data from Ketryx to Jira, if possible. However, note that some fields (e.g. various risk evaluation fields) are inherently "read-only" as far as Jira is concerned, i.e. Ketryx will not write values to Jira for them, regardless of this configuration.

This can be used to read field values from Jira that would otherwise be ignored, such as risk evaluation fields which are usually edited in Ketryx. This may be useful for an initial data import, but is not recommended afterwards, since edits in Ketryx may be overwritten by those Jira fields.

This is similar to the setting Field names, but only affects reading and writing values, without affecting the Jira screen configuration or how fields are displayed in Ketryx. Moreover, this setting can be changed at the project level, whereas Field names is only configurable at the organization level.

This setting may also be useful in cases where a configured custom item field editable in Ketryx should only be editable in Ketryx, and not in Jira (mapping the Jira custom field to null to ignore any Jira value).

Warning: Changing the field mapping might have wide-reaching effects, resulting in items transitioning out of their controlled state.

Note: For changing the mapping of version fields, use the setting Version fields. To read custom fields from Jira as custom fields in Ketryx (rather than as system fields), use the setting Extra field names.

Read risk evaluation fields from Jira

Read a custom description field from Jira

Ignore a certain field value from Jira

Configuration to override the default display of Ketryx widgets within Jira. This includes the Approval, Traceability and Risk widget.

Updating this setting requires a project sync within Ketryx to take effect.

Enable the risk widget only for a particular custom Risk type

Enable the traceability and approvals widgets for chosen Item Types

In order to configure the Jira widget display setting for specific fields correctly, navigate to Jira Settings > Work Types, find the applicable Work Type names, and populate them in the JSON object as shown above. NOTE: if using this setting to override the default display, the user will now need to explicitly state every Work Type that they want to display the widgets, even if the Work Type previously had it by default.

Configuration of the traceability widget, which allows to display the details of the selected item

Enable detailed view with specific fields

Approval workflow

Mapping from item types (enum values such as 'REQUIREMENT', 'CUSTOM' or plain-text values such as 'Requirement', 'Folder') and Jira status names (e.g. 'Open', 'New') to approval workflow customizations. Note that when overriding some settings for an item type and status, no other specific defaults will be applied, so all desired settings should be specified explicitly. Each entry can have the following properties:

instructionText: Text to display to the user in the Approvals widget for this status.
isApprovable: Whether to allow approvals for this status.
approvalMeaning: The approval meaning when approving an item with this status.

Enforce that Requirements have a required (extra) field "Acceptance Criteria" before they can be approved

Jama-integrated workflows

Approve in Ketryx and transition and lock the Jama item

Transition in Jama and control the Ketryx item without further approvals

This is based on the mapped Jama item status field. It is recommended to setup Jama approval workflows for each Jama item type that automatically transition items to the corresponding Jama state once a review is completed. Ketryx will then read those as controlled records and not require further approvals.

Approval rules

Custom approval rule overrides, allowing an arbitrary KQL filter. These are applied after the general approval rules of the project (defined by the user) and the backend customizations defined by approvalWorkflow, i.e. these approvalRules are the most specific setting.

Adjust approval groups for Requirements of type "Intended use"

Electronic signature item types

Item types (standard names such as "Requirement" or custom names such as "Folder") that require an electronic signature. The default would be ["Risk", "Test Case", "Test Execution", "Test Plan"].

Only require electronic signatures on Risk items

Enable Assistant Sidebar

Whether to enable the Assistant sidebar. Enabled by default.

Enable AI

Whether to enable AI-based features, particularly the AI-based item assistant and the 'Write AI text' button in the 'Create item' dialog. This only has an actual effect if AI usage is allowed at the organization level. Enabled by default.

Enable enhanced AI-based item creation and editing

Whether the Assistant should automatically identify and suggest items related to new items suggested or edited by it, in response to a user query. Enabling this feature will prolong response time. This only has an actual effect if AI usage is allowed at the organization level. Disabled by default.

AI prompt suggestions

Predefined prompt groups for the Assistant sidebar. Each group represents a expandable selection for defined templates.

Use custom prompt group with a set of templates

AI feature configuration

Custom configuration of the AI-based features such as the item assistant.

Use a custom OpenAI instance on Azure

Use a custom OpenAI endpoint

Enable version deletion

Whether versions can be deleted by users with the appropriate permissions. Enabled by default.

Enable item invalidation

Whether to enable invalidation of items if controlled fields change, based on invalidatedTransitionStatus in the workflow configuration (by default, Closed items are transitioned back to Resolved for invalidation). If this is not set or null, invalidation is enabled unless the project is in observe-only mode (not using the predefined Ketryx workflows).

Removal status names

Status names to interpret as removal/obsolescence of an item w.r.t. releases, similarly to deleted items. Defaults to an empty list.

Treat items with the status of "Cancel" as removed/obsolete

Deletion status name (controlled)

Status name to represent deleted items in a controlled state. This status is set by Ketryx when a deletion is detected and does not need to be approved. Defaults to "Closed".

Deletion status name (uncontrolled)

Status name to represent deleted items in an uncontrolled state. This status is set by Ketryx when a deletion is detected that still needs to be approved. Defaults to "Resolved".

Uncontrolled field names

Names of fields to ignore w.r.t. the controlled state of a record and its content hash. Changing these fields does not influence the record's content hash and does not trigger a transition back into an uncontrolled state.

Ketryx will still create a new record with the new value, but the status will remain the same (unless other, controlled fields changed as well).

Allow setting the "Document ID" field even after an item is fully approved

Extra field names

List of extra custom field names to read from Jira. These should be defined as custom fields in Jira and added to the desired screens (Ketryx will not perform this Jira configuration automatically). Extra fields can also refer to any field from source systems other than Jira, like Polarion or Jama, when a field cannot be mapped to a system field.

This is superseded by Custom item fields configuration which allows for more fine-grained configuration.

Track the extra fields "Acceptance Criteria" and "Source"

Unchecked items filter

KQL filter for "unchecked" items, i.e. items that do not need to be controlled before a version can be released. By default, no items are considered unchecked.

Do not require Anomalies with an Environment of "internal" to be controlled

Deferred items filter

KQL filter for deferred items (anomalies). By default (if not specified), all Anomalies with a non-empty Rationale for deferring resolution will be considered deferred. Deferred items do not need to be in a controlled state (like unchecked items).

Invalid items filters

KQL filters to determine invalid items, along with error messages to show for them. Invalid items that are active in a version block the release of that version.

Enforce Anomalies with a Resolution of "Duplicate" to have a status of either "Done" or "Cancel"

Enforce that all Test Cases that are risk controls are included in the test plan

Ignored test executions filter

Filter for Test Executions to ignore for the release test status. Just like "redundant" Test Executions (that are superseded by a later Test Execution), these are still shown in the Items page, but not elsewhere.

Use Test Executions only based on Test Plan

Whether to associate Test Executions with versions only based on (Xray) Test Plan items, but not based on their version field. This is off by default, i.e. a Test Execution's version field (Introduced in version) is considered, and only if that is not set, it is associated with a version based on containing Test Plans.

Enable automatic risk item updates on risk configuration change

When enabled, Ketryx will make sure to keep all Risk items up-to-date with any risk configuration changes by creating new item records (e.g. updating all the relevant computed initial / residual risk analysis values). Please note that controlled risks may require re-approval after an configuration update. This setting is enabled by default.

Build documents to be tracked for each project build

When defined, Ketryx will detect build documents in project builds that contain build artifacts with the configured filenames.

Build documents will show up on the commits history page and release documents page.

By default, Ketryx will only allow release approval when all defined build documents have been uploaded for a given version. This behavior can be disabled via the "Require uploaded build documents" Release controls setting.

Configure different report build documents relevant for a release

Traceability configuration

Configuration for the traceability behavior. The Ketryx RTM currently offers two different engines for configuring the traceability: v2 (legacy), which comes with slightly adjustable pre-configured traceability presets, and v3, which allows much more detailed customizations such as configurable design and testing columns, tracing rules, traceability checks and much more.

(RTM v3) Enable the new RTM v3 mechanism. Defaults to the project's schema config to determine the traceability behavior (equivalent to the v2 presets)

(RTM v3) Full example for a project using the full schema config tracing use-cases, design inputs (Requirements), design outputs (SW/HW specifications), verification tests (testing design outputs) and validation tests (testing design inputs)

(RTM v2) Trace "Use case" requirements to other requirements to specs to tests (overriding the behavior from the project's schema config)

(RTM v2) Only require validation of requirements (overriding the behavior from the project's schema config)

(RTM v2) Add "Intended use" requirements to the first column (rather than ignoring them, which would be the default)

Enable the RTM approval workflow for the traceability page

Additional traceability configurations

Other traceability configurations that are selectable in addition to the default configuration.

enforceGreenCheck will make these additional traceability configurations also affect the release checklist.

Two additional traceability configs

Allow item transition

Whether to allow items to be transitioned from the Ketryx side. By default (if not defined or null), transitions are allowed based on the project's observe-only flag: In observe-only mode, transitions are not allowed; otherwise they are allowed.

Note that, currently, transitions are only supported for built-in Ketryx statuses and workflows. Using different status names or workflows in connected systems (such as Jira) might be a reason to disable this.

Allow item creation

Whether to allow items to be created from the Ketryx side (e.g. Risks, Test Executions, other items). By default (if not defined or null), item creation is allowed based on the project's observe-only flag: In observe-only mode, item creation is not allowed; otherwise it is allowed.

Note that constraints configured in connected systems (such as custom item creation screens and field validations in Jira) are not enforced by Ketryx. Using such constraints might be a reason to disable this.

Note that this setting also affects whether items can be created via the Ketryx traceability widget in the connected systems (e.g. Jira).

Allow item editing

Whether to allow items to be edited from the Ketryx side (e.g. Risks, Test Executions, other items). By default (if not defined or null), item editing is allowed based on the project's observe-only flag: In observe-only mode, item editing is not allowed; otherwise it is allowed.

Note that this setting also affects whether existing items can be linked via the Ketryx traceability widget in the connected systems (e.g. Jira).

Allow item restoring

Whether to allow items to be restored from the Ketryx side (e.g. Risks, Test Executions, other items). By default (if not defined or null), item restoring is allowed based on the project's observe-only flag: In observe-only mode, item restoring is not allowed; otherwise it is allowed.

Enable item approval notifications

Whether to send notifications regarding item approvals. By default (if not defined or null), notifications are sent unless the project is in observe-only mode. Notifications are not sent for required document training.

Enable test case creation in Jira

Configuration for an additional traceability widget button that allows the creation of Xray tests using the Jira dialog. By default, this button is not shown.

Version number pattern

Pattern for version names, used to extract normalized version number strings.

Warning: Changing the version number pattern in a non-empty project with existing versions and configuration items might change the association of item records with versions, resulting in wide-reaching effects.

SemVer version numbers (major.minor.patch-prerelease+build)

Alphabetical version identifiers (three components, with the second and third one being optional, but being normalized to an empty part)

Select text field options

Option values for each select text field in this project (e.g. region values).

When defining regions, items associated with a specific region will only be shown in region-specific documents, as defined by the document setting Region-specific documents.

Warning: When connected to custom fields in Jira (via the Field names setting), changing this setting will affect the Jira configuration of those custom fields.

Predefine two regions "EU" and "US"

Version fields

Configuration for how to determine the start and end version for an item (Introduced in version, Obsolete in version).

This is a mapping from standard item type names (e.g. "Requirement" or "Anomaly") or the wildcard * to a configuration object that lists field keys to consider. The configuration for the wildcard * is used as a fallback, if there is no specific configuration for an item type name.

By default, uses the Ketryx fields Introduced in version and Obsolete in version; in addition, Jira's built-in field Fix version(s) is taken into account (as the end version for Anomalies, or as the start version for all other item types).

Warning: Changing version fields in a non-empty project with existing versions and configuration items might change the association of item records with versions, resulting in wide-reaching effects.

Use an extra custom field "Released Version" as well as Jira's "Fix version(s)" as the introducing version, except for Anomalies where "Fix version(s)" should denote the obsoleting version

Whether to include related items in auto-created incremental releases. Disabled by default.

Incremental releases: Excluded from test plan

KQL filter for tests to exclude from the test plan in auto-created incremental releases.

Incremental releases: Omitted documents

Omitted documents in auto-created incremental releases.

Incremental releases: Target branch name

Base ref name (glob pattern) to match against before auto-creating an incremental version. By default, the main analyzed branch is taken.

Incremental releases: Source branch name

Head ref name (glob pattern) to match against before auto-creating an incremental version. By default, all head ref names are accepted.

Create transitive dependency items

Determines whether all direct and indirect dependencies should be created as dependency items. If true, all dependencies, not just root-level ones, need to be acted upon for a release to happen.

Ketryx will scan for vulnerabilities in all dependencies, regardless of this setting as long as the dependencies are found, e.g. in an uploaded SPDX file.

Warning: Be very careful with this setting, as it can lead to a large number of items. Even if this setting is disabled, root-level dependencies will still show their dependencies on their Dependencies tab.

Disabled by default.

Enable threat modeling

Whether to enable the threat modeling feature. Disabled by default.

Note that this feature requires configuration of certain Custom item types.

Threat modeling configuration

Configuration object for the threat modeling feature.

Any value not specifically set here will be used from the default configuration object.

Default configuration object:

Rename threat rich text field

Hide all rich text fields

Add another rich text fields. In this case, the default field must be included in the list.

Bypass adding all threat modeling fields to the vulnerability impact assessment form

Enable vulnerability management

Whether to enable the vulnerability management feature. Enabled by default.

Vulnerability management configuration

Configuration object for the vulnerability management feature.

All fields except assessmentHeading and mitigationItemTypes will also affect the Vulnerability Report document. Any value not specifically set here will be used from the default configuration object.

Setting autoAddFields to false will automatically hide the Risks, Mitigations, and Resolution column in the vulnerabilities table on the SBOM > Vulnerabilities page.

Default configuration object

Use a custom assessment heading

Use a custom resolution configuration

Rename risk and mitigation rich text fields

Hide all rich text fields

Allow only software item specs and test cases as mitigation items

Disable the Risks, Mitigations, and Resolution column

Bypass adding all vulnerability management fields to the vulnerability impact assessment form

Whether to share user reported vulnerabilities with all projects in an organization. Enabled by default.

If disabled, new vulnerabilities reported via the builds API or project import will only be visible within the current project.

Suggested item type task order

The item type order used by the guidance task system when suggesting a user which first items to create in a new project. Items should be referenced by their standard item type names (e.g. "Requirement") or custom type names (e.g. "Folder").

Have a Requirement, Software Item Spec and Test Case, in that order, suggested by the guidance system

Have a Requirement (which has renamed to "Functional Requirement" through the "Item type names" configuration field), custom "Folder" item type and a Software Item Spec, in that order, suggested by the guidance system

Webhooks

Webhooks for Ketryx to notify external systems of certain events.

For each of the following events, an object can be specified with properties url (required), method ("POST" or "GET", defaulting to "POST"), and authHeader (optional):

recordApproval: Approval of an item record
releaseApproval: Approval of a version/release
milestoneApproval: Approval of a milestone

Send a webhook upon item record approval

Send a webhook upon version release approval, using a GET request with a custom Authorization header

Custom KQL filters

Using this setting custom KQL filters that should be available on various screens inside Ketryx can be specified.

The following are valid screens:

AllItems
Graph
RiskControl
RiskManagement

If no screens are specified, the query is shown on all screens. Names of queries must be unique.

Add custom KQL queries

New in 2.14

Agent-based filters

You can create filters to find items flagged by specific AI agents. These filters help teams quickly identify items that require attention based on agent analysis.

For example, you can configure a custom filter that filters for items that are part of findings of the Change Request Affected Item Agent:

CycloneDX field mapping

This setting allows for flexible mapping of data from a CycloneDX Software Bill of Materials (SBOM) to custom fields on Ketryx DEPENDENCY items. The mapping is defined using a set of rules, where each rule specifies how to extract a value from the SBOM and which custom field to populate.

Note: CycloneDX field mapping currently only supports mapping to , not default fields in Ketryx.

Key Concepts:

JSONPath Expressions (source): Data is extracted from the SBOM using JSONPath expressions. These expressions provide a standardized way to select parts of a JSON document.
Mapping Contexts:
- $.component: Use this prefix in your JSONPath expression to query fields within the current CycloneDX component being processed. For example, $.component.name

Configuration Structure:

The configuration object has the following main properties:

mappingSchemaVersion: Must be "1.0.0".
supportedVersions: An array of CycloneDX specification versions this mapping configuration is designed for (e.g., ["1.4", "1.5"]).
mappingRules: The array of mapping rules as described above.

Note: Any manual changes made to the values of custom fields that are mapped through this setting will be overwritten the next time a build is reported and a new SBOM is processed.

Map component type to a custom field

Map SBOM generation date to a custom field

Map and transform values for a SELECT custom field

Map multiple values to a MULTI_SELECT custom field

Use a default value if a source field is not present

Handle modified fields across different SBOM specification versions

Map associated vulnerabilities to a RICH_TEXT custom field

Use Ketryx-specific Jira configuration

Determines whether Ketryx should configure the connected Jira space (formerly project) with the Ketryx-specific Jira project configuration for Jira item types, screens, and workflows.

This is only effective if Jira configuration is enabled at the organization level (via the setting Enable Jira configuration).

If this is not specified (neither at the project nor at the organization level), the default is to only use the Ketryx configuration if the space is empty and the project is not in observe-only mode.

Environmental scoring profile

CVSS Environmental scoring profile configuration that defines default environmental metrics for vulnerability scoring.

This setting allows you to define multiple environmental scoring profiles as an array. Each profile must specify a version field and version-specific environmental metrics. Environmental metrics help adjust the base CVSS score based on the specific environment where the vulnerability exists.

Multiple profiles can be defined for each CVSS version, but only the first one will be used.

When environmental metrics are defined, they will be used as defaults when scoring vulnerabilities, allowing for more accurate risk assessment based on your project's specific environment and requirements.

CVSS 3.1 environmental profile with high confidentiality requirement

CVSS 4.0 environmental profile with modified attack vector

Mixed version environmental profiles

Integration precedence

Precedence of integrations connected to the project.

This setting determines which connected system sets the properties of synchronized versions. The source of a version which appears first in this list will determine properties of the version.

Default precedence

Enable vulnerabilities as configuration items

Whether vulnerabilities are considered as configuration items. This setting is disabled by default.

When this option is enabled, manual vulnerabilities and automatically detected vulnerabilities with an impact assessment are treated as configuration items, allowing them to be managed like other items. More importantly, those vulnerabilities will be considered as release item types, meaning they may block a release if uncontrolled.

Enable item rejection

Whether to enable the item rejection feature. Disabled by default.

If enabled, users will be able to reject records whenever they are in an approvable state. A rejection will result in a new record being created in the "Open" state with the same content as the original record.

Require rejection comments

Whether to require comments when users reject records. Disabled by default.

If enabled, users will be required to provide a comment when rejecting records.

Azure DevOps work item mapping

Mapping between Azure DevOps item types and Ketryx items including fields and relationships.

workItemType: The Azure DevOps item type's key or name (both case-sensitive). To apply a mapping to ALL items, use the wildcard "*".
itemType: The Ketryx item type used to create items, e.g., REQUIREMENT.
fields

Should a given Azure DevOps item type be mapped multiple times, its mappings will be merged together:

itemType: The first Ketryx item type will be used.
fields: All distinct Ketryx/Azure DevOps field keys will be used. In case of conflicts, the first one will be used.
`"workItemType": "*" is default mapping, i.e., it can be specified only once and will be overridden by more specific item type mappings.

Map one Azure DevOps item type to one Ketryx type

Map Azure DevOps item types using global and type-specific field mappings

Establish traceability between an Azure DevOps project to other source systems

Default mapping

Azure DevOps status mapping

Defines a mapping between Azure DevOps status labels and Ketryx item states (OPEN, REOPENED, IN_PROGRESS, RESOLVED, or CLOSED). This configuration ensures seamless synchronization of work item statuses across systems by translating ADO-specific statuses to their corresponding Ketryx states.

Map ADO statuses "Proposed" and "Design" to Ketryx state Open, and "Completed" to Closed

Default mapping

Azure DevOps work item relations mapping

Defines how Azure DevOps work item relationships are mapped to corresponding Ketryx relationship types. This configuration enables consistent handling of linked items, such as parent-child relationships, test dependencies, or other custom relations, across both systems.

Mappings are defined as key-value pairs where the key represents the Azure DevOps relation type (e.g., 'Parent' or 'Tested By') and the value specifies the equivalent Ketryx relation type (e.g., 'HAS_PARENT' or 'TESTS').

Map Test items

Map Parent items

Default mapping

TestRail sync configuration

Configuration for TestRail synchronization behavior.

The configuration consists of:

syncFilter: Controls which items are included in the sync
- milestonePattern: Regular expression pattern to match milestone names
  - '.*' matches all milestones

Default configuration

Version-specific configuration

TestRail field type mapping

Mapping between different TestRail-specific fields and Ketryx. This mapping is essential for translating fields used in TestRail into their corresponding representations in Ketryx.

The following types are supported:

TEST_PROTOCOL: Mappings for test cases, including defaults and client-specific templates
TEST_EXECUTION: Mappings for executing tests
TEST_PLAN: Mappings for planning tests

Map Custom Fields

TestRail status mapping

Mapping from TestRail status names to Ketryx item states (OPEN, REOPENED, IN_PROGRESS, RESOLVED, or CLOSED).

Map the status "Backlog" to the Ketryx state Open, and "Done" to Resolved

TestRail result mapping

Mapping from TestRail result names to Ketryx item states (PASSED, FAILED, FAIL_ACCEPTED or PASS_WITH_EXCEPTION).

Map the result "Passed" to the Ketryx state Passed

TestRail work item relations mapping

Mapping between TestRail-specific fields and Ketryx relations. Source field is the field in TestRail, relationType is the relation in Ketryx and targetSystem is the system where the target item is located. targetSystem can be ('Jira', 'ADO', 'TestRail', 'Git').

Map custom field to map as item affects from jira item

Jama item mapping

Mapping between Jama item types and Ketryx items including fields and relationships.

For each mapped item type, you can specify the following (see examples for each below):

jamaItemType: The Jama item type's key or name (both case-sensitive). To apply the same mapping to multiple types, use an array of keys/names; to apply a mapping to ALL items, use the wildcard "*".
jamaItemCategory: Anomalies and test cases can also be mapped by the corresponding Jama item type category (Use as); supported categories are DEFECT, TEST_CASE, TEST_PLAN, TEST_RUN

Should a given Jama item type be mapped multiple times, its mappings will be merged together:

itemType: The first Ketryx item type will be used.
fieldValues and fields: All distinct Ketryx/Jama field keys will be used. In case of conflicts, the first one will be used.
"jamaItemType": "*" and jamaItemCategory are default mappings, i.e., they can specified only once and

Map one or many Jama item types to one Ketryx type

Map a Jama item type category to a Ketryx type

Map Jama item types with static field values

Map Jama item types using global and type-specific field mappings

Establish traceability across multiple Jama projects and to other source systems

Map inverse Jama relationships

Disable default mappings

Either disable the entire item type, or specific fields and relationships. For a disabled item type, no new records are created. To remove existing items from Ketryx, they may be excluded on the All items page.

Jama item status mapping

Mapping from Jama status names to Ketryx states.

Map Jama status names

Jama item relationships mapping

Mapping from Jama item relationships to Ketryx relations.

Map Jama item relationships

Jama field type mapping

Mapping from Jama-specific fields to Ketryx fields.

Note: This is deprecated, please use Jama item mapping instead.

For releases, please be aware that Jama and Ketryx assign items differently. For the best experience, we recommend using two custom release fields.

Optionally, specify a relation from a field to establish traceability to other source systems like Jira.

Map item fields

Jama relations field mapping

Combination of field- and relation mapping to link items based on a field instead of a relationship, e.g., to establish traceability across source systems.

Note: This is deprecated, please use Jama item mapping instead.

The sourceField is the field in Jama and expected to hold the target item's Ketryx ID or the key by which the source system uniquely identifies the item, e.g., for Jira this would be the Jira issue key. relationType is the relation in Ketryx and targetSystem is the system where the target item is located (Ketryx by default). targetSystem can be one of ADO, Confluence, Git, Jama, Jira, Ketryx, Polarion, TestRail

Use a field to link to other items, including from other source systems

Jama releases

Configure how releases are handled in Jama. The default (no configuration) is to use Jama's built-in releases and corresponding fields (use field type mapping to associate items with these releases).

An alternative mode available through this setting is to use multi-select fields as source for releases. Based on these Jama fields, Ketryx knows which picklists to interpret as Ketryx versions and will then associate corresponding items to each selected version.

Use custom multi-select picklists instead of Jama releases

Document configuration

Omitted documents

Omitted document types in this project. These documents will not show up on a version's documents page and will not be required for approving a version.

This is separate from omitting documents "ad-hoc" on a version's Documents page, which only affects that particular version.

If not defined, a default set of omitted documents will be chosen based on the chosen schema configuration mode of the project.

Use all available documents

Omit all documents except for the SRS document

Region-specific documents

Documents that should be generated for each region. Possible region values are defined in Select text field options.

By default, only the SRS document is considered region-specific.

Generate SRS and SDS document for each region

Require up-to-date milestone documents

Whether milestone documents are required to be up-to-date for the milestone to be approvable. Enabled by default.

Show outdated state for milestone/release documents

Whether milestone and release documents display an "Outdated" state on the UI when Ketryx determines that they do not contain the latest information. This setting is enabled by default.

NOTE: Disabling this will only affect release documents if the "Require up-to-date release documents" release control is disabled. Similarly, it will only affect milestone documents if the "Require up-to-date milestone documents" advanced setting is disabled.

Milestone-independent documents

Documents that should contain all items (independently of milestones), even if they are generated as milestone documents.

Default list of documents that are considered milestone-independent

Require controlled templates

Whether to only use document templates that are in a controlled state (off by default). If activated, any unapproved draft will be ignored, and the last controlled record of a template will continue to be used instead.

Recommendation: We recommend setting this to 'yes' once you are satisfied with the current version of your templates and want to approve them (and maintain approvals).
*Note: When this setting is active, uploading a revision of an approved template will not make it immediately available for creating new documents. The new version must first complete the required approval workflow before it replaces the previous controlled version on the Release Documents screen.

Omitted fields

Omitted fields for each document type and item type. Word documents showing the details of an item will not show those omitted fields.

Document types and item types are denoted by their internal identifiers. Fields are denoted by their human-readable name (e.g. "Description", "My custom field").

Omit the "Expected behavior" field from Test Cases in the Test Plan documents

Include title page

Whether to include a title page (on by default).

Include version page

Whether to include a page listing the document version history (on by default).

Word document

Settings for all generated Word documents.

Use the setting for Custom template variables to define custom template variables such as $DOC_ID.

Footer

Excel spreadsheet

Settings for all generated Excel spreadsheets.

Custom template variables

Allows customizing the template variable input for all document types. A template variable may be configured to be user-adjustable, which would show extra inputs in the release documents UI.

This is usually used in combination with custom headers and footers.

Introduce a user-adjustable $DOC_ID variable

System Requirements Specification

Customization of SRS output documents.

Omit a dedicated "Other" section heading if it is the only section in the document

Requirements Traceability Matrix

Customization of RTM output documents.

Omit use cases and specs from the RTM document

Do not show excluded tests at all

Do not show excluded tests if there is no "inherited" test in the previous release

Risk Matrix

Customization of Risk Matrix output documents.

Rename some columns, and omit the "System categories" column

Release history

Customization of Release History documents.

Default values:

Remove the Scope description section from the release history document

Include the V&V section in the release history document

Release Notes

Customization of Release Notes documents.

Default values:

Remove the Scope description section from the release notes

Include the V&V section in the release notes

Only include certain user requirements in the release notes

Only include corrective anomalies in the release notes

SBoM – SOUP – Software Configuration report

Customization of SBoM – SOUP – Software Configuration Report documents.

Rename the column "Dependency name" to "Name"

Omit the "Ecosystem" column

Test Plan

Customization of Test Plan documents.

Omit automated tests from the Test Plan Word document

Testing Report

Customization of Testing Report documents.

Only show the last (effective) test execution for each test in the Testing Report Word document

Risk Management File

Customization of Risk Management File documents.

Omit the risk evaluation matrix section from the document

Omit the general information section from the document

Date format

Default date format to render date/time values in template-based documents. Placeholders as defined by can be used.

ISO 6801-compliant time stamps

Date time zone

Default time zone to use for date/time values in template-based documents. Time zones are specified using their .

Use the New York time zone

Normalization

Document normalization settings.

Enable embedding of EDMS documents

Whether to enable embedding of EDMS documents. The Assistant uses these embeddings when answering user queries about their documents. If enabled, EDMS documents are sent to a zero data retention service for processing.

Test result names

Mapping of internal test result status names to custom ones.

As a special value, "EXCLUDED" can also be mapped to a custom value (with the default label being "Excluded" in the RTM).

Use custom test result names

Short item refs

Use short item references (usually just the Jira issue key) instead of long references (that also indicate the item type and revision number). Defaults to false if not defined.

Edit release documents externally

Use external editors to collaborate on release documents. This requires a connection for the respective system.

Google Docs

Risk configuration

Hazardous situations

Customization of hazardous situation values.

Set new hazardous situation values

Event sequences

Customization of event sequence values.

Set a new event sequence value

Event steps

Customization of event step values.

Set new event step values

Hazards

Customization of hazard values.

Set new hazard values

Harms

Customization of harm values. A harm may include an associated initial severity. If strict mode is enabled, it is recommended to add the severity.

Set new harm values

Hazard types

Customization of hazard type values.

Warning: If the Hazard type field is mapped to a custom field in Jira (via Field names), changing this setting will result in a global configuration change of that custom field.

Set new hazard type values

System categories

Customization of system category values.

Warning: If the System categories field is mapped to a custom field in Jira (via Field names), changing this setting will result in a global configuration change of that custom field.

Set new system category values

Risk assessment methodologies

Customization of risk assessment methodology values.

Warning: If the Risk assessment methodologies field is mapped to a custom field in Jira (via Field names), changing this setting will result in a global configuration change of that custom field.