Results

The Scans and Sessions page lists the scans under the categories DAST, SAST, SCA, and IAST, where you can view your scan results, including scan statistics. To view, rescan, or download reports, select a scan.

Table 1. Results and report types

Report level

Report type

Details

Application
  • Security report
  • Industry standard report
  • Regulatory compliance report
  • Open source report

Application reports include all scans in the application. All New, Open and In Progress issues are included; Fixed, Noise and Passed issues are excluded.

To generate an Application Report:

Click Manage > Report on the Applications page, and select one of the report types.

Scan
  • Security report
  • Industry standard report
  • Regulatory compliance report

Security reports contain all the issues found in the latest version of a scan.

To download a Security Report:

In Scans and sessions page, click the ellipsis icon and select Download report or from the single scan view, click Manage > Download report.

Static Analysis Scan

Open Source License Report
This report lists all the open source libraries found by this scan in your code, and their associated risk level. These risk levels are not equivalent to Severity Level in ASoC, and do not indicate the vulnerabilities of specific issues. You can see if any of the libraries have known vulnerabilities in Issue Management view.
Note: Access to this report requires a subscription.

To download an Open Source License Report:

In Scans and sessions page, click the ellipsis icon and select Download report or from the single scan view, click Manage > Download report. Select Open source report and click Next and then click Generate report.

Issues

Filtered Security Report

 On All issues page of the single application view you can use a variety of filters to filter the issues list, and then generate a Security Report for the selection.

To generate a Filtered Security Report:

On All issues page of the single application view, filter the list and click Security Report.

Finding your scan results

You can easily find scan results, regardless of the application to which they belong:
  1. Select Main menu > Scans and sessions.
  2. Search the flat list of scans using a full or partial name of the scan you're trying to find.

    You can also filter the list of scans by their status to narrow your search.

Ask an Expert

AppScan for You subscribers can connect to an AppScan technical security expert to assist with configuring and running scans, interpreting application findings, and providing remediation and mitigation guidance. On All issues page of the single application view, click Ask an Expert to schedule time to meet with an AppScan expert at your convenience. Learn more about AppScan for You here.