Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleCxSAST Summary

The CxSAST Summary provides information about the distribution of security issues for the plan/project and is divided into the following categories:

  • Status Bar – red lists issues found (exceeded threshold value or violation of one or more policies):

  • Status Bar – green indicates a passed scan:

  • Vulnerabilities Status - this graph represents the status and severity of security vulnerabilities discovered during a scan.
    •  Recurrent - The status of a vulnerability is recurrent if it was already discovered in a previous scan
    •  New - The status of a vulnerability is new if it was discovered for the first time, or if it was re-opened after being resolved in a previous scan
    •  Default Threshold - Indicates the default threshold setting
    •  High – Indicates the number of high severity vulnerabilities
    •  Medium – Indicates the number of medium severity vulnerabilities
    •  Low - Indicates the number of high low vulnerabilities
  • PDF Report – provides a link to the CxSAST report in PDF format.
  • Results – provides a link to the code viewer in CxSAST (see Navigating Scan Results).

 


Expand
titleThe CxOSA Summary

The CxOSA Summary provides information about the distribution of security issues for the plan/project and is divided into the following categories:

  • Vulnerabilities & Libraries Status - provides a graph with the status of each vulnerability severity and the number of found vulnerability instances for each severity level.
    •  Default Threshold - Indicates the default threshold setting
    •  High – Indicates the number of high severity vulnerabilities
    •  Medium – Indicates the number of medium severity vulnerabilities
    •  Low - Indicates the number of high low vulnerabilities

      Info

      CxOSA Summary takes into consideration vulnerability result states. (e.g. Not Exploitable vulnerabilities will not be aggregated in the global summary).


  • Results – provides a link to the CxOSA Viewer in CxSAST.

 

Info

If the build is marked as failed (red), this may be because the number of found vulnerability instances exceeded the configured threshold.


...