Overview

The Reports & Compliance section turns scan results into audit-ready outputs by mapping findings to common security and compliance frameworks.

Reports are Tenant-Scoped and can be Generated from:

PR scans (what changed + what new risk was introduced)
Branch scans (current posture of a branch over time)
Container scans (image posture)
Kubernetes posture/runtime (cluster posture and controls)

Important Scoring Rule

Findings marked False Positive or Ignore / Acceptable Risk are excluded from compliance scoring (so your compliance posture reflects actionable risk only).

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Overview

Reports are Tenant-Scoped and can be Generated from:

Important Scoring Rule

SAST Rules

IaC Rules

License Rules

Overview ​

Reports are Tenant-Scoped and can be Generated from: ​

Important Scoring Rule ​

Overview

Reports are Tenant-Scoped and can be Generated from:

Important Scoring Rule