Scan metrics Scan findings View scan details with the AWS CLI or AWS SDKs

View code scan details

To view scan details, open the Scans page in the CodeGuru Security console and choose the scan you want to view details about.

The overview panel includes information about the scan, such as the number of times you've re-run the scan, the date of the last completed scan, and the scan status of the last scan.

Choose the Metrics tab to view data about the scan. Choose the Findings tab to view a list of the open findings generated by the scan. Choose the Tags tab to view any tags assigned to the scan.

Topics

Scan metrics
Scan findings
View scan details with the AWS CLI or AWS SDKs

Scan metrics

Use scan metrics to track finding data across multiple revisions of the same code resource. There are several scan metrics you can monitor for a particular scan.

Open findings – The number of open findings a scan has. You can also see the date of the oldest finding.
Closed findings – The number of closed findings a scan has. You can also see the closure rate, which is the number of closed findings per all findings that have been generated by a scan.
Severity distribution – The number of findings in each severity category generated by the scan. The severity of a finding can be one of five categories: Critical, High, Medium, Low, and Informational. For more information on how severity is defined, see Severity definitions.
Vulnerability assessment - This metric is generated on a weekly basis and tracks which vulnerabilities have generated the current open findings. The graph gives a visual breakdown of how many of each type of vulnerability are present in the scan’s open findings.

Scan findings

Use the Findings tab on the scan summary page to view a list of a scan’s open and closed findings. You can view the severity of a finding, the finding status, the age of a finding in days, and the time the finding was detected. Choose a finding to view details about it. For information about findings, see Working with findings.

You can customize the view of the Findings table by choosing the gear icon on the upper right side of the table. In the Preferences window that appears, you can select page size, display settings, and which columns you want to see.

View scan details with the AWS CLI or AWS SDKs

To retrieve code scan metrics with the AWS CLI or AWS SDKs, use the GetScan operation with the scanName of the scan you want to view metrics about. For more information, see the Amazon CodeGuru Security API Reference.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

View all code scans

Working with findings