How can I generate report for code vulnerabilities across multiple assets?

To generate report of code vulnerabilities identified in source code across multiple assets, follow the steps below:

  1. Login into I3 Portal
  2. Using the left floating menu navigate to Analytics —> Vulnerabilities —> Code and click on Code Vulnerabilities button in the top ribbon menu
  3. You can filter code vulnerabilities using the below:
    • Specify search text in the Search box. This is searched in the following: Source filename, Description, Source code snippet and Status
    • Specify the State of the finding i.e. Open / Resolved / Ignored
    • Click on the charts (Rating, OWASP Categories, CWE Distribution, Tags) for further filtering
  4. Click on the CSV Reports button to immediately generate or schedule a report for code vulnerabilities.