Skip to main content

Overview

The vulnerability detail view is where you review evidence, update status, assign owners, and create tickets. For definitions of severity, impacts, and vulnerability types, see Vulnerabilities and Impacts.

Page layout

  • Header tabs: Overview, Analysis when call hierarchies exist, Activity
  • Watch button: toggle watching and see watcher count
  • Main content: type specific sections on the left, with a right sidebar for status and metadata
  • Comments: shown below the main content on the Overview tab

Detail view by vulnerability type

Overview tab, left column
  • Description: code snippet with highlighted lines, vulnerable or exploitable context, vulnerable reason, and fixing advice when available
  • Locations: table with Container, Line, and Branch/Ref columns
Analysis tab
  • Call hierarchy selector and either data flow analysis or function analysis
  • Step by step analysis with code excerpts when available
  • Status and resolution: shows the current lifecycle state and resolution. See Statuses and Resolutions. Human review required callouts and regression badges appear when applicable.
  • Analysis: vulnerable and exploitable flags, severity, CWE, and fixing complexity when available. Definitions are in Vulnerabilities and Impacts.
  • Assignment: current assignee and reassignment controls. For automated routing, see Auto assignment.
  • Ticketing: linked tickets and create ticket action. See Tickets.
  • Introduced by: author and first detected timestamp for non dependency vulnerabilities
  • Impacts: impact categories shown as icons. See Impacts.

Activity tab

The Activity tab shows a timeline of key events such as status changes, comments, and system activity.