With the help of schemas you can customize issue fields.
Note: the Reports will be generated according to the issue schema that is set as default in the project;
To create Issue schema:
Click +Schema
;
Select schema template to copy it (optional) — use this option to copy schema fields from other schemas;
+
to add fields to the schema:Preview
to view the schema;Create
to save new schema;Create issue
to create issue right after you save your issue schema.Templates — predefined issue fields that are used for issue templates. Fields from this section can be added to the schema only once. You cannot edit IDs of these fields, however you can edit technical names:
Score — total risk of the vulnerability calculated upon Probability
and Criticality
of the Issue:
Low
, Medium
, High
);Low
, Medium
, High
);Affected assets — IP addresses or Hostnames of the systems with Issues;
CWE-79
);Custom fields — fields from this section can be added to the schema an unlimited number of times. You can edit IDs and technical names of all fields:
1, 2, 3, ... n
);0.1, 0.2, 0.3, ... n
);Markdown — text in Markdown format. To the Markdown fields you can attach images in the formats .jpg
, .png
, .jpeg
, .gif
and file size is up to 100 MB (contact system administrator to change this parameter). To apply autofill of the markdown fields from the Issue templates, you must specify the following IDs for these fields in your Schema:
generalDescription
— corresponds to the field General descriptionrecommendations
— corresponds to the field RecommendationsriskDescription
— corresponds to the field Risk descriptionstepsToReproduce
— corresponds to the field Steps to ReproducetechnicalDescription
— corresponds to the field Technical descriptionCheckbox — single checkbox selector;
Select — field for selecting one or several options:
multiple choice
— select several options at once;single choice
— select only one option;add placeholder
— add hint to the empty option field (when registering an issue, grey text of the hint will be displayed in select fields)Radio buttons — radio button selector;
During the creation of issue schema, you can configure parameters of all fields:
*
next to the selected field;To import Issue schema:
Import
;Browse
to upload issue schema or drop it to the field in a.json
format;Import
. New issue schema appears in the list.To export Issue schema:
Export
;Export
:.json
format.Note: if you export several issue schemas, they will be saved to one
.json
file.
Default issue schema contains the following fields:
Score — total risk of the vulnerability calculated upon Probability
and Criticality
of the Issue:
Low
, Medium
, High
);Low
, Medium
, High
);Affected Assets — IP address or Hostname of the system with Issue (optional);
Technical name | Type | Displayed name | Comment |
---|---|---|---|
uuid | UUID | uuid | Unique schema ID |
postTime | DATETIME | Created | Date of the schema creation |
editTime | DATETIME | Edited | Date of the last schema modification |
ips | IP | IP addresses | Field for IP addresses |
hostnames | HOSTNAME | Hostnames | Field for Hostnames |
requests | REQUEST | HTTP requests | Fields for HTTP Requests |
criticalityScore | INTEGER | Criticality | Issue criticality (1 - low, 2 - medium, 3 - high) |
probabilityScore | INTEGER | Probability | Issue probability (1 - low, 2 - medium, 3 - high) |
totalScore | INTEGER | Total risk | Total risk of the Issue (1 - low, 2 - medium, 3 - high) |
weaknessType | TEXT | Weakness type | String for Weakness type |
generalDescription | TEXT_MD | Description | Field for Issue description (Markdown) |
risksDescription | TEXT_MD | Risks | Field for Risk description (Markdown) |
technicalDescription | TEXT_MD | Technical description | Field for Technical description (Markdown) |
recommendations | TEXT_MD | Recommendations | Field for Recommendations (Markdown) |
reproduceDescription | TEXT_MD | Steps to reproduce | Field for Steps to reproduce (Markdown) |