Skip to content

Security Scan Results

You can see the results of Sourcery's Security Scans from the Security Issues page of your Sourcery dashboard.

On this page you can see all of the issues across all of your scanned repos and can drill down by issue type, criticality, repo, and issue status.

Sourcery's security scan

You can click into an individual issue or issue group to see the details of an issue that Sourcery identified. From this modal you can easily navigate to the lines of code causing the issue and take action on the issue.

Specific Issue Details

You can filter your issues by:

  • Repository
  • Issue Type
  • Issue Status (by default only active issues are shown)

Scan Types

Sourcery's security scans focus on three main types of issues:

  • SAST issues
  • Infrastructure as code issues
  • Exposed secrets

By default all of these issues are shown in the security issues dashboard, but you can filter on specific issue types.

Grouping Issues

Sourcery looks to group common issues as a single issue group. When you click into a grouped issue you can see all instances of the issue and Sourcery will link out to the location of each one in your codebase.

If you resolve/ignore/snooze an issue group you will take action on all of the issues in that group.

You can view issues individually by toggling the Group Issues switch at the top left of the issues dashboard.