Contents x
    January 2023
    • 08 May 2024
    • Print
    • Dark
      Light
    • PDF
    Contents

    January 2023

    • Updated on 08 May 2024
    • Print
    • Dark
      Light
    • PDF
    Article Summary

    Status Rules for Findings

    You can now create rules that will automatically change the status for Findings that are ingested based on a specific Filter and Scope. This enables you to reduce noise by automating the remediation flow for a set of Findings.

    Note

    The Scoring Rules and SLA Rules pages were also moved from Settings to Rules.

    For example, all Findings with a given tag, e.g. Archived, can automatically be given the Ignored status so your security teams won’t waste time on these items.

    Also, you can create a rule for Findings of a specific type or title to be changed to an Exception. Within the rule, you can determine for how long the Findings stay as an exception.

    In addition, you can change the status of an Exception if any of the following events occur:

    • Finding becomes fixable - a Finding that previously did not have a fix now has a fix available.

    • Finding exploitability changed - a Finding that was previously only theoretical now has a PoC, or has been exploited in the wild.

    • Finding severity increased - a Finding that was previously considered less severe has now increased in severity.

    What's Next