Issue card information
Issue cards show details for a specific vulnerability or license issue and actions you can take for it.
Issue card for the npmconf vulnerability
Issue card for the apache log 4j vulnerability
npmconf issue card header
- Issue name: for example, Uninitialized Memory Exposure, with a link that can be copied
- Type: VULNERABILITY or LICENSE ISSUE
npmconf issue care with with option to Fix this vulnerability
apache-log4j2 issue card showing Social trends
- Introduced through: The path through which the vulnerability or license was introduced
- Fixed in: The file the vulnerability is fixed in
When you expand the issue card for more information, you can see details for the vulnerability, including:
- Detailed path information
- Fix advice
- Overview of the vulnerability
- Any vulnerable functions within the vulnerability
Details for the npmconf vulnerability
Details for the apache log4j vulnerability
You can apply multiple filters to a Project to show a set of issues:
- Whether a vulnerability or a license issue
- With a specific severity
- Within a range of the priority score
- Based on whether it has an exploit, and how mature the exploit is
- That are open or have been patched or ignored
The issue cards in a Project can be sorted based on their priority score or severity.
You can perform the following actions on the issue card:
- View more information about the CWE, CVE, and CVSS scores: navigate from the issue card to further information about these scores.
- View the Snyk vulnerability database: navigate to the Snyk vulnerability database information for a specific vulnerability from its issue card.