Configure Application Security Scans (Periodic, PR, and CI/CD) permission for Application Security.
Configure the following permission for Application Security Scans:
Periodic scans
PR Scans
CI/CD scans
Notice
Requires the Application Security add-on, in addition to a foundational Cloud Posture Security, Cloud Runtime Security, or Cortex XSIAM Premium license.
Branch Periodic Scans are scheduled, automated scans of repository branches. They run on a configurable schedule to continuously monitor the security posture of your codebase. Results show findings per branch, including IaC misconfigurations, vulnerabilities, secrets, and other issue types. To access Branch Periodic scans, go to → → → .
For more information, see Branch periodic scans.
Permission | Description | Roles Example |
|---|---|---|
None | No access to Periodic Scans. | SOC Tier-1 and 2 Analysts: Scan results are not typically needed for case investigation at this tier. |
View | Read-only access to periodic scan results. Users can view scan history, filter results, and view scan details. They cannot configure scan schedules, trigger manual scans, or modify scan configurations. |
|
View/Edit | Full access to configure and manage periodic scans. Includes all View capabilities plus: configure scan schedules, trigger manual scans, modify scan configurations, enable/disable scans, and configure scan scope. | Security Engineer: Configures scan schedules, triggers manual scans, and manages scan scope. |
Pull Request Scans are event-driven scans triggered on PR creation or update. They provide inline security feedback to developers during the code review process, enabling shift-left security. Results are tied to specific pull requests and show new findings introduced by the PR. To access PR scans, go to → → → .
For more information, see Pull Request scans.
Permission | Description | Roles Example |
|---|---|---|
None | No access to PR scans. | SOC Tier-1 and 2 Analysts: PR-level scan data is rarely needed for case investigation |
View | Read-only access to PR scan results. Users can view PR scan history, filter results, and view scan details. They cannot configure PR scan settings or modify scan behavior. |
|
View/Edit | Full access to configure and manage PR scans. Includes all View capabilities plus: configure PR scan triggers, modify scan settings, and manage PR scan behavior. | Security Engineer: Configures PR scan triggers and manages shift-left security enforcement. |
CI/CD Scans are scans integrated into CI/CD pipelines that run during pipeline execution. They provide security gates within the build and deployment process, enabling automated security checks before code reaches production. Results are tied to specific pipeline runs. To access CI/CD scans, go to → → → .
For more information, see CI scans.
Permission | Description | Roles Example |
|---|---|---|
None | No access to CI/CD Scans. | SOC Tier-1 and 2 Analysts: CI/CD scan data is rarely needed for case investigation at this tier |
View | Read-only access to CI/CD scan results. Users can view CI/CD scan history, filter results, and view scan details. They cannot configure CI/CD scan settings or modify pipeline integrations. |
|
View/Edit | Full access to configure and manage CI/CD scans. Includes all View capabilities plus: configure CI/CD scan settings, modify pipeline integrations, and manage scan behavior. | Security Engineer: Configures CI/CD scan settings and manages pipeline security integrations. |