From the report page

Set an exclusion from the report page

In the Security section, find the desired vulnerability, open the Actions tab and click on one of the options:

In the Stability section, click on the Ignore button related to the library you want to ignore:

In the Licensing section, click on the Exclude button related to the library you want to exclude:

When required, remember to type a meaningful description before confirming the exclusion:

Trust a component

In the security assessment, it is also possible to mark a specific component as Trusted so that all the transitive vulnerabilities, the ones carried by its dependencies, dot not affect the security score of the project.

The vulnerabilities related to the component itself will be included in the security assessment.

To mark a component as Trusted simply open the Hierarchy tab (if present), hover on the component to mark as Trusted and a "Trust component" button will appear.

When required, remember to type a meaningful description before confirming the exclusion:

This type exclusion will, in every case, trigger a recompute of the security section of the report.

PreviousHow to set a vulnerability exclusion NextFrom the dashboard

Last updated 3 years ago

Was this helpful?