This guide will help you configure custom severity scores and prioritize vulnerabilities within your projects, enabling your team to focus on the most critical issues for effective security management
Last updated
To help you prioritize vulnerabilities based on your project's unique needs, Codefortify allows you to set custom severity scores and adjust vulnerability categories. Follow these steps to configure your settings:
Navigate to the Projects Tab Begin by selecting the Projects tab in the main navigation.
Open a Specific Project Select the project for which you want to configure custom severity scores.
Access Project Settings Click the Settings button to open the configuration options.
Set Custom Severity Scores In the Custom Severity Scores section, specify your preferred score values for each severity level.
Recommended Starting Scores:
Low: 50
Medium: 100
High: 200
Critical: 300
Adjust Vulnerability Categories In the Vulnerability Categories section, you can set focus areas for:
Category
Language
Technology
Use the range selector to increase or decrease the importance of each category based on your project needs.
Save Changes Once you’ve set your custom scores and categories, click Save Changes to apply.
Once you save your custom scores and category settings All new and existing vulnerabilities will be evaluated and updated with scores based on your configured rules, helping your team visually prioritize the most critical issues.
To view the specific metadata used in scoring each vulnerability, navigate to the specific vulnerability within your project. This metadata provides detailed insights into how each vulnerability aligns with your custom severity scores and categories.
This customized scoring will help you and your team visually prioritize the vulnerabilities that matter most, ensuring that resources are focused on the most critical issues.
