Triaging issues in an application
All issues are classified as 'new' by default. You can see an issue classification by viewing the issue status. If no issues display for an application, associate a security scan with the application. Otherwise, you must manage your issues from a report in the Scans view. If you move a scan job from one application to another, you won't lose any of your issue management changes.
Before you begin
- You must have either global "Manage Issues on All Applications" permissions, or have Basic/Full permission on the specific application before you can triage any of its issues.
- If a scan is not associated with an application, triage its issues through the reports in the Scans view (same as 9.0.0.1 and earlier).
Learn more about issue classification:
You can exclude issues that are false positives or that are resolved from future views. Use Issue Classification to mark New issues as Open, Fixed, In Progress, Passed, or as Noise to reduce confusion and track progress better.
Use issue triage to do the following tasks:
- Reduce noise so that you can focus on the real issues.
- While you are reviewing issues, you can classify those issues that do not need to be fixed as noise or passed. Noise issues include those issues that might be false positives. Passed issues require manual verification or review. After you classify issues as noise or passed, you can then focus on other issues, such as open, reopened and in progress. Issues that are open or reopened have a negative impact on your overall summaries.
- Track progress toward remediation.
- You can track progress by evaluating each new issue and classifying it as open, fixed, in progress, noise, or passed. Assigning issues a status helps you better manage the volume of issue data. You can identify and track what issues to fix first and what does not need to be fixed at all.
- Show positive results.
- Classifying issues also helps you show positive results or progress in your organization's scores to give your key stakeholders a more realistic picture of your site's performance.
Procedure
- In an application tab, group by Severity, Issue Type, Status, or Scanner, and expand the category sections that are of interest to you.
- Click About this Issue report. This report contains valuable information about the issue, such as advisories and fix recommendations. Use this information to help you determine whether the issue is really an issue for your organization. Add comments if necessary, but note that they can't be deleted. for any new issue to open the
-
To change an issue status from a new state:
-
Modify issue attributes to add more information. For example, some information might not be
available when you import issues from a third-party scanner, such as a description or CVSS metrics.
To learn more about modifying CVSS metrics, see Changing the severity of an issue by modifying its CVSS score.
Note: Any issue attributes that you edit for this application do not affect issues in other applications, even if an issue is associated with another application.
- Click Save Attributes and close the dialog.