Findings

What are Findings?

Findings of an project are the results of policy evaluation.

There could be multiple policies attached to an project and there would as many findings associated.

Policies get associated with a project via Gates. A gate can be defined at an organization level. All policies associated with the gate will be run against the projects in that organization.

Understanding Findings

All components that are flagged by the policy evaluation are displayed towards left, along with the category of the components (open-source, private, third-party, unknown).
The findings are displayed towards the right, categorized as critical, high, medium, low.
The severity associated with a policy decides the severity of the finding. A policy marked as critical, when check fails, will generate a critical severity finding.
Each tile is clickable which will list down the components applicable to that filter in a table view. The details will list the policy name that triggered this finding, the gate associated with the finding, severity of the finding.

PreviousSuppliers & Licenses NextManage Your SBOM

Last updated 11 months ago