The Cortex Cloud console provides a centralized, visual interface to track scan health, configure scanners, and resolve detected issues across your repositories and pipelines.
How to access Cortex Cloud Application Security scan management
To access scan management:
Under Modules, select Application Security.
Under Scans, select a scan type:
Branch Periodic scanning: Scans code branches on a schedule to identify vulnerabilities early in development. For more information about branch periodic scans, refer to Branch periodic scans
Pull Request scans: Scans code changes within pull requests to prevent the introduction of new vulnerabilities. For more information about pull request scans, refer to Pull Request scans
CI scans: Detects exposed secrets, misconfigurations, package vulnerabilities, and license non-compliance in your continuous integration pipelines. For more information, refer to CI scans
Scan data presentation
Periodic, pull request and CI scan details are presented on the Cortex Cloud console across two levels of granularity: an inventory table providing a list of scans, and a side panel providing general scan details including a high-level breakdown of the findings and issues detected during the scan, and an expanded description card, providing detailed information about the issues generated from these scans.
Note
While scans provide a comprehensive inventory of all issues detected during a scan, dedicated inventories are also maintained for specific scan types for more granular management. For more information, refer to Code Security scanners.