Artifact Security

Artifact Security

Artifact Security is a detailed insight into all the artifacts, their vulnerabilities, security issues and risk status before and after deployment. When a new image is detected during any build or deployment stage, it is analyzed and the scan results are displayed.

To Access Artifact Security

• Navigate to the Artifact Security tab and click on it.

The Artifact Security page displays the following panels:

• Artifacts

• Artifact Life Cycle Stages

• Artifact Risk Status

Artifacts

The Artifacts panel displays the total number of artifacts in the application as shown below:

Artifacts Life Cycle Stages

The Artifact life cycle stages panel displays the different stages and number of artifacts in each stage in the artifact lifecycle. It displays the following stages as shown below:

• Generated - The deployments that were generated but never deployed.

• Deployed - The deployments that were generated and deployed.

• Overridden - The deployments that were generated and replaced.

Artifacts Risk Status

The Artifact Risk Status panel displays the summary of the risk status of the listed artifacts as shown below:

• Apocalypse Risk - The deployments that are of apocalypse risk.

• High Risk - The deployments that are of high risk.

• Medium Risk - The deployments that are of medium risk.

• Low Risk - The deployments that are of low risk.

The panel below these displays the various artifacts and its details:

• Artifact - Displays the name of the artifact.

• Artifact Version - Displays the version of the artifact.

• Artifact Tags - Displays the tags for the artifact that were sent in the build events.

• Risk Status - Displays the risk status of the artifact.

• Stage - Displays the life stage of the artifact.

• Security Issues - Displays the number of open security issues (alerts) identified for the given artifact.

• Created on - Displays the date when the artifact was created.

• Built by - Displays the build details of the artifact.

• Source Repository - Displays the source repository name of the artifact.

• Cluster - Displays the name of the cluster to which the artifact belongs to.

• SBOM - On clicking View, the SBOM page for the related artifact is displayed.

• DBOM - On clicking View, the DBOM page for the related artifact is displayed.

• View Reports - On clicking the three dots, you can view the list of scans run on the artifact as shown below:

You can download the scan results by clicking on it.