You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/semgrep-ci/findings-ci.md
+1Lines changed: 1 addition & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -29,6 +29,7 @@ These states correspond to:
29
29
Semgrep AppSec Platform builds on CI findings to track status and provide additional context for managing findings within your organization. A finding can be one of four statuses in Semgrep AppSec Platform:
Copy file name to clipboardExpand all lines: docs/semgrep-code/triage-remediation.md
+23-6Lines changed: 23 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -40,7 +40,9 @@ Semgrep Assistant can also [auto-triage findings](/semgrep-assistant/overview#au
40
40
41
41
**Triage** is the prioritization of a finding based on policies or criteria set by your team or organization, such as severity, coding standards, business goals, and product goals.
42
42
43
-
Semgrep AppSec Platform uses the logic specified in the table below to automatically mark findings as either fixed or removed when they are no longer present in the code. You can also manually **Ignore** findings or set them as **To fix** or **Reviewing** in Semgrep AppSec Platform directly through **triage** or **bulk triage** actions.
43
+
Semgrep AppSec Platform uses the logic specified in the table below to automatically mark findings as either fixed or removed when they are no longer present in the code. Additionally, Semgrep can automatically mark findings as **provisionally ignored** based on AI analysis, validation results, and reachability analysis.
44
+
45
+
You can manually **Ignore** findings or set them as **To fix** or **Reviewing** in Semgrep AppSec Platform directly through **triage** or **bulk triage** actions.
44
46
45
47
The triage statuses are as follows:
46
48
@@ -109,14 +111,14 @@ To **ignore multiple findings** in the **No grouping** view, follow these steps:
109
111
110
112
### Reopen findings
111
113
112
-
You can **reopen** a finding that you previously marked as **ignore**at any time.
114
+
You can **reopen** a finding at any time, whether you previously marked it as **ignored**or Semgrep automatically marked it as **provisionally ignored**.
113
115
114
116
<details>
115
117
<summary>Reopen findings in <b>Group by Rule</b> view</summary>
116
118
117
119
To **reopen findings** in the **Group by Rule** view, follow these steps:
118
120
119
-
1. Go to [Code > All](https://semgrep.dev/orgs/-/findings?tab=open), and ensure that your filters are set to display all **Ignored** findings.
121
+
1. Go to [Code > All](https://semgrep.dev/orgs/-/findings?tab=open), and ensure that your filters are set to display all **Ignored**, **Provisionally Ignored**, or **Fixed** findings.
120
122
2. Perform one of these steps:
121
123
- To select all findings for the same rule, select the first checkbox on the finding's card, then click **Triage > Open** .
122
124
- To select individual findings reported by a rule, fill in the checkboxes of the finding, and then click **Triage > Open**.
@@ -130,14 +132,14 @@ To **reopen findings** in the **Group by Rule** view, follow these steps:
130
132
131
133
To **reopen individual findings** in the No grouping view, follow these steps:
132
134
133
-
1. Go to [Code > All](https://semgrep.dev/orgs/-/findings?tab=open), and ensure that your filters are set to display all **Ignored** findings.
135
+
1. Go to [Code > All](https://semgrep.dev/orgs/-/findings?tab=open), and ensure that your filters are set to display all **Ignored**, **Provisionally Ignored**, or **Fixed** findings.
134
136
2. Select the checkbox next to a finding you want to reopen. Click **Triage > Open**.
135
137
3. Optional: Write a reason to describe why the finding was reopened.
136
138
4. Click **Submit**.
137
139
138
140
To **reopen multiple findings** in the **No grouping** view, follow these steps:
139
141
140
-
1. Go to [Code > All](https://semgrep.dev/orgs/-/findings?tab=open), and ensure that your filters are set to display all **Ignored** findings.
142
+
1. Go to [Code > All](https://semgrep.dev/orgs/-/findings?tab=open), and ensure that your filters are set to display all **Ignored**, **Provisionally Ignored**, or **Fixed** findings.
141
143
1. Perform one of these steps:
142
144
- Select all findings on the page displayed by clicking on the header row checkbox that states **X matching findings**. You can navigate to succeeding pages and add other results to the current selection.
143
145
- Select all findings of interest by clicking on their checkboxes.
@@ -201,4 +203,19 @@ Semgrep supports older versions of this feature that used the following commands
201
203
202
204
## Triage findings in bulk through the Semgrep API
203
205
204
-
Semgrep provides an API endpoint you can use to triage findings in bulk, either by passing a list of `issue_ids` or filter query parameters to select findings. You must also specify an `issue_type`, such as `sast` or `sca`, and either `new_triage_state` or `new_note`. Refer to [<iclass="fas fa-external-link fa-xs"></i> Bulk triage API documentation](https://semgrep.dev/api/v1/docs/#tag/TriageService).
206
+
Semgrep provides an API endpoint you can use to triage findings in bulk, either by passing a list of `issue_ids` or filter query parameters to select findings. You must also specify an `issue_type`, such as `sast` or `sca`, and either `new_triage_state` or `new_note`.
207
+
208
+
The available `new_triage_state` values you can set are:
209
+
-`open`
210
+
-`reviewing`
211
+
-`fixing`
212
+
-`ignored`
213
+
-`fixed`
214
+
215
+
If specifying a `new_triage_reason`, you must also use `new_triage_state=ignored`.
216
+
217
+
:::note
218
+
When retrieving findings through the API, you may also see the `provisionally_ignored` status. This status is automatically set by Semgrep and cannot be manually assigned through the bulk triage API.
219
+
:::
220
+
221
+
Refer to [<iclass="fas fa-external-link fa-xs"></i> Bulk triage API documentation](https://semgrep.dev/api/v1/docs/#tag/TriageService) for complete details.
Copy file name to clipboardExpand all lines: docs/semgrep-secrets/findings.md
+3-1Lines changed: 3 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -74,7 +74,9 @@ Severity is assigned based on how sensitive or crucial the exposed web service i
74
74
75
75
**Triage** is the prioritization of a finding based on policies or criteria set by your team or organization, such as severity, coding standards, business goals, and product goals.
76
76
77
-
Semgrep AppSec Platform uses the logic specified in the table below to automatically mark findings as either fixed or removed when they are no longer present in the code. You can also manually **Ignore** findings or set them as **To fix** or **Reviewing** in Semgrep AppSec Platform directly through **triage** or **bulk triage** actions.
77
+
Semgrep AppSec Platform uses the logic specified in the table below to automatically mark findings as either fixed or removed when they are no longer present in the code. . Additionally, Semgrep can automatically mark findings as **provisionally ignored** based on AI analysis, validation results, and reachability analysis.
78
+
79
+
You can manually **Ignore** findings or set them as **To fix** or **Reviewing** in Semgrep AppSec Platform directly through **triage** or **bulk triage** actions.
0 commit comments