Correlation Flow

The Correlation Flow page provides analytics on the correlation of issues found during the security testing of the application by the AST tools and resulting in the application security defects based on them.

This tab provides statistics on the work of a Security Engineer in terms of analyzing the correlation of security issues and creation of security defects based on them. Security issues found by the AST tools are counted by four practices (SCA Compliance, SCA Security, SAST, and DAST). The next separation of issues is performed by issue status (Technical debt, False Positive, Confirmed, Fixed). Maverix helps you define correlation of security issues, group issues and submit security defects.

The security defects opened based on the security issues can be filtered by severity (Low, Medium, High, Critical) and by application.

To get the Correlation Flow metric for a particular application, click the Applications field on the Filters tab at the top right and select the application from the drop-down menu.

Use the drop-down menu in the Severity field on the Filters tab to get the Correlation Flow metric for security defects with a particular severity level.

Click the button at the top right to reset the filters.