Issue card information
Issue cards show details for a specific vulnerability or license issue and actions you can take for it.

Issue card for the npmconf vulnerability

Issue card for the apache log 4j vulnerability

npmconf issue card header
- Issue name: for example, Uninitialized Memory Exposure, with a link that can be copied
- Type: VULNERABILITY or LICENSE ISSUE
- Links to CWE (Common Weakness Evaluation), CVSS (Common Vulnerability Scoring System), and Snyk Intel Vulnerability DB information for the issue

npmconf issue care with with option to Fix this vulnerability

apache-log4j2 issue card showing Social trends
- Introduced through: The path through which the vulnerability or license was introduced
- Fixed in: The file the vulnerability is fixed in
- Reachability: for example, Reachable. For information and an example, see Reachable vulnerabilities
- Social Trends: Snyk shows a Trending banner for issues that are being actively discussed on Twitter.
When you expand the issue card for more information, you can see details for the vulnerability, including:
- Detailed path information
- Fix advice
- Overview of the vulnerability
- Any vulnerable functions within the vulnerability

Details for the npmconf vulnerability

Details for the apache log4j vulnerability
You can apply multiple filters to a Project to show a set of issues:
- Whether a vulnerability or a license issue
- With a specific severity
- Within a range of the priority score
- Based on whether it has an exploit, and how mature the exploit is
- That are open or have been patched or ignored
The issue cards in a Project can be sorted based on their priority score or severity.
You can perform the following actions on the issue card:
- Ignore the issue: if you do not need to take action on an issue, or it does not need to appear on your reports, you can ignore it.
- Create a Jira ticket: if you have the Jira integration, you can link your issue boards to Snyk and create Jira tickets directly from the project details page to fix vulnerabilities.
- View more information about the CWE, CVE, and CVSS scores: navigate from the issue card to further information about these scores.
- View the Snyk vulnerability database: navigate to the Snyk vulnerability database information for a specific vulnerability from its issue card.
Last modified 20d ago