Overview
Insights brings report views together so you can track security posture across repositories, applications, and teams.Page controls
- Report: Select a report from the dropdown
- Scope: Choose Tenant, Organization, Repository, Application, Team, or Developer when the report supports it
- Scope item: Pick a specific entity when the scope requires one
- Time period: Select a preset range, or Current for point-in-time only reports
- Compare: Toggle a comparison with the previous period for non point-in-time ranges, charts show a Comparing periods badge and summary cards show percent change
Report catalog
Security Snapshot
Security Snapshot
Purpose: Quick view of current posture with severity, status, and trend contextBest for: Teams that want a fast posture snapshotScope:
Tenant Organization Application RepositoryElements
| Type | Name | Description |
|---|---|---|
| Chart | Severity Breakdown | Current vulnerabilities by severity |
| Chart | Status Breakdown | Current vulnerabilities by status |
| Chart | Vulnerability Trend | Open vs resolved trend over time |
| Scorecard | Repository Health Score | Grade and component breakdown for repository scope |
| Stat card | Secret Detection | Total, verified, and unverified secrets |
| Stat card | Dependencies | Affected dependencies and total vulnerabilities |
| Stat card | Regressions | Regression count and rate |
Code Security Analysis
Code Security Analysis
Purpose: Deep analysis of code findings across severity, trends, and remediationBest for: Security and engineering teams tracking code riskScope:
Tenant Organization Application RepositoryElements
| Type | Name | Description |
|---|---|---|
| Summary card | Open Findings | Count of open code findings |
| Summary card | New This Period | Findings created in the selected period |
| Summary card | Resolved This Period | Findings resolved in the selected period |
| Summary card | % Exploitable | Portion of findings flagged as exploitable |
| Summary card | MTTR (Median) | Median time to resolution in days |
| Summary card | False Positive Rate | Portion of findings marked false positive |
| Chart | Open vs New vs Resolved (weekly) | Weekly flow of new, resolved, and open findings |
| Chart | Severity Distribution (current) | Current findings by severity |
| Chart | Time-to-Fix Distribution (days) | Resolution time distribution in day buckets |
| Chart | CWE Distribution | Findings grouped by CWE |
| Chart | Impact Matrix (weekly) | Weekly impact matrix of code findings |
| Chart | Vulnerability Trends | Trends for total, exploitable, and fixed findings |
| Chart | Exploitability Rate | Gauge of exploitability rate |
| Table | Top Vulnerability Risks | Highest risk findings with severity, CWE, file, age, and risk score |
| Table | Top Repository Risks | Repositories ranked by risk and severity mix |
Dependency Risk Analysis
Dependency Risk Analysis
Purpose: Dependency risk and supply chain posture with update and remediation signalsBest for: Teams managing third-party risk and dependency hygieneScope:
Tenant Organization Application RepositoryElements
| Type | Name | Description |
|---|---|---|
| Chart | Dependency Composition | Direct vs transitive counts, plus vulnerable subset |
| Chart | Risky Dependencies Treemap | Top risky dependencies sized by vulnerability count |
| Chart | Ecosystem Breakdown | Dependency counts by ecosystem |
| Chart | Vulnerability Trends | Total vs fixed dependency vulnerabilities over time |
| Chart | Update Status | Major, minor, patch, and up to date distribution |
| Chart | Remediation Velocity | Resolved vulnerabilities by time bucket |
| Chart | Supply Chain Posture | SBOM and lockfile coverage plus dependency ratios |
Secrets Detection Report
Secrets Detection Report
Purpose: Secret exposure status, verification, and remediation trendsBest for: Teams tracking credential risk and remediation velocityScope:
Tenant Organization Application RepositoryElements
| Type | Name | Description |
|---|---|---|
| Chart | Provider Breakdown | Secrets grouped by provider type |
| Chart | Verification Status | Live, inactive, unverified, and false positive counts |
| Chart | Detection Trends | Detected, remediated, and live trends over time |
| Chart | Top Repositories | Repositories with total and live secrets |
| Chart | Risk Gauge | Secrets risk score gauge |
| Chart | Verification Latency | Time to verification distribution |
| Chart | Remediation Latency | Time to remediation distribution |
| Chart | Exposure Contexts | Exposure context distribution |
| Chart | Repeat Offenders | Developers with most leaked secrets |
| Stat card | Secret Detection | Total, verified, and unverified secrets |
Risk Trend Analysis
Risk Trend Analysis
Purpose: Risk scoring and density trends over timeBest for: Teams monitoring macro risk movementScope:
Tenant Organization Application RepositoryElements
| Type | Name | Description |
|---|---|---|
| Chart | Risk Trend | Risk score trend over time |
| Chart | Density Trend | Vulnerability density trend over time |
| Chart | Risk Gauge | Current risk score gauge |
| Chart | Risk Breakdown | Risk contribution by category |
MTTR Trend Analysis
MTTR Trend Analysis
Purpose: Resolution speed trends by severity and typeBest for: Teams tracking remediation speedScope:
Tenant Organization Application RepositoryElements
| Type | Name | Description |
|---|---|---|
| Chart | Mttr Trend | Overall, critical, and high MTTR trend lines |
| Chart | Severity Comparison | Average MTTR by severity |
| Chart | Type Breakdown | Average MTTR by vulnerability type |
Repository Security Ranking
Repository Security Ranking
Purpose: Compare repository health and risk at a glanceBest for: Teams prioritizing remediation across repositoriesScope:
Tenant OrganizationElements
| Type | Name | Description |
|---|---|---|
| Summary card | Total Repositories | Count of repositories in scope |
| Summary card | Average Score | Average health score across repositories |
| Summary card | At Risk (D-F) | Repositories graded D or F |
| Summary card | Total Open Vulnerabilities | Open findings across repositories |
| Table | Repository Rankings | Rank, grade, score, severity counts, totals, and last scan |
| Filter | Search, Organization, Grade, Per page | Filter and pagination controls for the table |
Organization Security Ranking
Organization Security Ranking
Purpose: Compare organization health and risk across the workspaceBest for: Leaders reviewing risk at the org levelScope:
TenantElements
| Type | Name | Description |
|---|---|---|
| Summary card | Total Organizations | Count of organizations in scope |
| Summary card | Average Score | Average health score across organizations |
| Summary card | At Risk (D-F) | Organizations graded D or F |
| Summary card | Total Repositories | Total repositories across organizations |
| Summary card | Total Vulnerabilities | Open findings across organizations |
| Table | Organization Rankings | Rank, grade, score, severity counts, totals, and best or worst repos |
| Filter | Search, Grade, Risk Level, Per page | Filter and pagination controls for the table |
Developer League Table
Developer League Table
Purpose: Rank developer performance across risk, resolution, and quality metricsBest for: Managers reviewing developer-level trendsScope:
Tenant Organization TeamElements
| Type | Name | Description |
|---|---|---|
| Chart | Performance Chart | Top developers by performance score |
| Chart | Metrics Comparison | Radar comparison of top developers |
| Table | Developer Rankings | Ranked table with score, severity counts, MTTR, and risk score |
| Section | Top Performers | Best overall, resolution rate, and MTTR |
| Section | Improvement Opportunities | Lowest performers by score and resolution |
| Section | Developer Focus Areas | Developers grouped by severity focus |
Developer Profile
Developer Profile
Purpose: Deep dive into one developer’s risk and remediation profileBest for: One-on-one reviews and coachingScope:
DeveloperElements
| Type | Name | Description |
|---|---|---|
| Chart | Performance Trend | Vulnerabilities created and resolved by month |
| Chart | Severity Distribution (current) | Current findings by severity |
| Chart | Repository Impact | Top repositories by findings |
| Chart | Mttr Trend | Average MTTR by month |
| Section | Performance Header | Badge, activity status, score, and rank |
| Section | Key Metrics Summary | Total vulnerabilities, resolution rate, MTTR, and risk score |
| Section | Vulnerability Breakdown | Severity counts and resolved count |
| Section | Performance vs Team Average | Comparison against team averages |
| Section | Repository Activity | Repository level table of findings and MTTR |
| Section | Recent Activity | Recent findings with severity and status |
| Section | Resolution Statistics | Resolution speed and velocity stats |
Report metadata
- Report generated at timestamp
- Cached for value when available
Related docs
- Vulnerabilities: Field definitions and severity context
- Vulnerability list view: Entry point for findings
- Vulnerability lifecycle: Status flow referenced in reports