Skip to content

Findings

Each finding includes severity, status, history, and potential duplicates.

  • Severity: Informational, Low, Medium, High, Critical.
  • Status: New, Accepted, Fixed, Rejected.
  • AI Statuses: AI accepted, AI fixed, AI rejected (system-assigned).
  • History: Timestamps and changes tracked for auditability.
  • Duplicates: Detected and linked to reduce noise.

Status definitions:

  • New: Initial status. SQUR verifies the finding for duplicates and reproducibility and may set it to AI accepted or AI rejected.
  • Accepted: Valid finding acknowledged for remediation by the user.
  • Fixed: Remediation is completed by the user and ready for verification by SQUR.
  • Rejected: Not applicable or determined to be invalid, set by the user.
  • AI accepted / AI rejected / AI fixed: System-assigned statuses from automated verification.

Best practices:

  • Start with Critical and High findings.
  • Use status reasons to explain decisions.
  • Retest after a fix to confirm the issue is resolved.
? SQUR