Medium SAST Vulnerabilities

Overview

The Medium SAST Vulnerabilities widget tracks medium severity security issues found through Static Application Security Testing. This metric helps IT Operations (IT Ops) and Security Operations (Sec Ops) engineers manage moderate security risks in their applications.

Value for IT and Security Engineers

Security Perspective

• Baseline Security: Identifies common security weaknesses that need attention.

• Risk Trending: Helps track the evolution of security posture over time.

• Security Hardening: Supports ongoing security improvement efforts.

Operational Perspective

• Maintenance Planning: Helps schedule regular security maintenance windows.

• Resource Allocation: Supports efficient allocation of development resources.

• Process Improvement: Identifies areas where security practices can be enhanced.

Use Case Scenarios

• Sprint Planning: Incorporate medium-severity fixes into regular sprint cycles.

• Security Training: Identify areas where developer security training might be beneficial.

• Best Practices: Ensure adherence to security best practices in development.

By monitoring medium-severity issues, this widget helps teams maintain consistent security standards and prevent the accumulation of security debt.