Code scanners
Finding Type | PR Scan | CI Scan | Periodic Scan |
|---|---|---|---|
Vulnerabilities | ✓ | ✓ | ✓ |
Secrets | ✓ | ✓ | ✓ |
IaC Misconfigurations | ✓ | ✓ | ✓ |
Code Weaknesses | ✓ | ✓ | ✓ |
License Issues | ✓ | ✓ | ✓ |
Operational Risks | ✓ | ✓ | ✓ |
Malware | ✗ | ✓ | ✗ |
Note
Malware findings are applicable to image scans only When a CI Scan includes image scanning, Malware findings are evaluated PR Scan and Periodic Scan do not evaluate Malware findings
CI/CD Configuration scanners
Finding Type | Periodic Scan | PR Scan | CI Scan |
|---|---|---|---|
CI/CD Risks | ✓ | ✗ | ✗ |
Note
CI/CD Configuration Scanners policies support only the Periodic Scan trigger PR Scan and CI Scan triggers are not available for the CI/CD Configuration Scanners policy type
Drift Detection scanner
Finding Type | Periodic Scan | PR Scan | CI Scan |
|---|---|---|---|
IaC Drift | ✓ | ✗ | ✗ |
Note
Drift Detection Scanner policies support only the Periodic Scan trigger PR Scan and CI Scan triggers are not available for the Drift Detection Scanner policy type