This guide shows you how to manage the defects of delivery audits.
Under the Life Cycle module, select Deliveries to access and manage delivery audits, files, defects, and to export audit reports in PDF and CSV format.
Click the Status icon to access the Audit module for every delivery. Also, you can access the Files module by clicking the Files value of the delivery.
Click the Status icon (/) of a delivery to open the Audit results for that delivery, which includes the Overall Result, Checkpoints passed and the reached thresholds, the Audit Score, and detected Defects. For more information on Audit results, visit Audits Management - Audit Results Page.
In addition, you can access other important modules of your deliveries by clicking the menu icon located next to the module title:
You can access Files by selecting the option Files in the menu icon as mentioned previously.
This screen displays a complete list of files included in the delivery. For every file, it shows absolute metrics of each file:
Also, it shows metrics relative to the same file when it was analyzed as part of the application baseline:
Click the menu icon located next to the module title and select Defects to open the defects details for the delivery.
The defects are organized in three sections:
If there is no baseline analysis for your delivery, all defects will appears as new defects. |
You can find more information about the detected defects of the delivery, they provide the Rule name, Rule information, Priority, CWE, Characteristic, Vulnerability type, Language, Effort and additional options.
The Components are organized in four sections:
Every section lists components and organized them by Component name, Vulnerabilities number, Version number, Filename, Language, Obsolescence risk, License risk, and Security risk.
The Obsolescence, license, and security risk are identified by a severity label based on their values.
To review more information of the components, expand each one of them to review the list of vulnerabilities, a description, and the severity of each one of them. Each vulnerability and CWEs are linked to its official documentation.
Select the option PDF or CVS to export the Audit report.
This report includes the Audit, Checkpoint information, and Checkpoint Details.