Viewing Suppressed Security Vulnerabilities
The following procedure describes how to obtain a view all currently suppressed security vulnerabilities in your Code Insight instance. Only a Code Insight System Administrator can access this view.
To obtain a view of all currently suppressed security vulnerabilities in Code Insight, do the following:
|
1.
|
Click the following icon in the upper right corner of the Code Insight web page to open the Code Insight main menu: |
|
2.
|
Select DATA LIBRARY from the menu to open the Data Library page. |
|
3.
|
Select Suppressed Vulnerabilities tab to view the list of the currently suppressed security vulnerabilities in Code Insight. (This tab is visible to only Code Insight System Administrators.) From this tab, you can do the following: |
|
•
|
For each suppressed vulnerability, easily review the OSS or third-party component with which the vulnerability is associated and the specific versions of that component for which the vulnerability is currently suppressed. For a description of this tab, see Suppressed Vulnerabilities Tab. |
|
•
|
View a pop-up that shows details about a given vulnerability by clicking the Information icon next to the ID of the suppressed vulnerability in the Vulnerability Id column. |
|
•
|
View a pop-up window that shows the vulnerability-suppression details of every component version for which a given vulnerability is suppressed. To open the pop-up, click the Information icon next to the versions listed for the vulnerability in the Affected Versions column. The details shown for each of the component versions listed on the pop-up include the user who suppressed the vulnerability for the version, the date and time of the suppression, the reason for the suppression, and additional remarks. |