Commit 55c864c9 authored by Nick Gaskill's avatar Nick Gaskill Committed by Craig Norris

Turn off Vale for false positives

parent 10201c8a
...@@ -53,6 +53,8 @@ immediately identify which alerts you should prioritize investigating: ...@@ -53,6 +53,8 @@ immediately identify which alerts you should prioritize investigating:
Alerts contain one of the following icons: Alerts contain one of the following icons:
<!-- vale gitlab.SubstitutionWarning = NO -->
| Severity | Icon | Color (hexadecimal) | | Severity | Icon | Color (hexadecimal) |
|----------|-------------------------|---------------------| |----------|-------------------------|---------------------|
| Critical | **{severity-critical}** | `#8b2615` | | Critical | **{severity-critical}** | `#8b2615` |
...@@ -62,6 +64,8 @@ Alerts contain one of the following icons: ...@@ -62,6 +64,8 @@ Alerts contain one of the following icons:
| Info | **{severity-info}** | `#418cd8` | | Info | **{severity-info}** | `#418cd8` |
| Unknown | **{severity-unknown}** | `#bababa` | | Unknown | **{severity-unknown}** | `#bababa` |
<!-- vale gitlab.SubstitutionWarning = YES -->
## Alert details page ## Alert details page
Navigate to the Alert details view by visiting the [Alert list](alerts.md) Navigate to the Alert details view by visiting the [Alert list](alerts.md)
......
...@@ -248,6 +248,8 @@ which shows an overview of all the security vulnerabilities in your groups, proj ...@@ -248,6 +248,8 @@ which shows an overview of all the security vulnerabilities in your groups, proj
Clicking the vulnerability opens a modal that provides additional information about the Clicking the vulnerability opens a modal that provides additional information about the
vulnerability: vulnerability:
<!-- vale gitlab.Acronyms = NO -->
- Status: The vulnerability's status. As with any type of vulnerability, a coverage fuzzing - Status: The vulnerability's status. As with any type of vulnerability, a coverage fuzzing
vulnerability can be Detected, Confirmed, Dismissed, or Resolved. vulnerability can be Detected, Confirmed, Dismissed, or Resolved.
- Project: The project in which the vulnerability exists. - Project: The project in which the vulnerability exists.
...@@ -261,3 +263,5 @@ vulnerability: ...@@ -261,3 +263,5 @@ vulnerability:
- Scanner: The scanner that detected the vulnerability (for example, Coverage Fuzzing). - Scanner: The scanner that detected the vulnerability (for example, Coverage Fuzzing).
- Scanner Provider: The engine that did the scan. For Coverage Fuzzing, this can be any of the - Scanner Provider: The engine that did the scan. For Coverage Fuzzing, this can be any of the
engines listed in [Supported fuzzing engines and languages](#supported-fuzzing-engines-and-languages). engines listed in [Supported fuzzing engines and languages](#supported-fuzzing-engines-and-languages).
<!-- vale gitlab.Acronyms = YES -->
...@@ -27,6 +27,8 @@ analysis are available in the [security dashboards](../security_dashboard/index. ...@@ -27,6 +27,8 @@ analysis are available in the [security dashboards](../security_dashboard/index.
The results are sorted by the priority of the vulnerability: The results are sorted by the priority of the vulnerability:
<!-- vale gitlab.SubstitutionWarning = NO -->
1. Critical 1. Critical
1. High 1. High
1. Medium 1. Medium
...@@ -34,6 +36,8 @@ The results are sorted by the priority of the vulnerability: ...@@ -34,6 +36,8 @@ The results are sorted by the priority of the vulnerability:
1. Info 1. Info
1. Unknown 1. Unknown
<!-- vale gitlab.SubstitutionWarning = YES -->
A pipeline consists of multiple jobs, including SAST and DAST scanning. If any job fails to finish A pipeline consists of multiple jobs, including SAST and DAST scanning. If any job fails to finish
for any reason, the security dashboard does not show SAST scanner output. For example, if the SAST for any reason, the security dashboard does not show SAST scanner output. For example, if the SAST
job finishes but the DAST job fails, the security dashboard does not show SAST results. On failure, job finishes but the DAST job fails, the security dashboard does not show SAST results. On failure,
......
...@@ -45,6 +45,8 @@ From the Vulnerability Report you can: ...@@ -45,6 +45,8 @@ From the Vulnerability Report you can:
You can filter the vulnerabilities table by: You can filter the vulnerabilities table by:
<!-- vale gitlab.SubstitutionWarning = NO -->
| Filter | Available options | | Filter | Available options |
|:---------|:------------------| |:---------|:------------------|
| Status | Detected, Confirmed, Dismissed, Resolved. | | Status | Detected, Confirmed, Dismissed, Resolved. |
...@@ -53,6 +55,8 @@ You can filter the vulnerabilities table by: ...@@ -53,6 +55,8 @@ You can filter the vulnerabilities table by:
| Project | For more details, see [Project filter](#project-filter). | | Project | For more details, see [Project filter](#project-filter). |
| Activity | For more details, see [Activity filter](#activity-filter). | | Activity | For more details, see [Activity filter](#activity-filter). |
<!-- vale gitlab.SubstitutionWarning = YES -->
### Filter the list of vulnerabilities ### Filter the list of vulnerabilities
To filter the list of vulnerabilities: To filter the list of vulnerabilities:
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment