Prioritization Funnels
Last updated
Last updated
Xygeni's Prioritization Funnels enhance your ability to filter and identify crucial issues, enabling you to focus on resolving the most significant matters.
Given a full set of security issues, Prioritization Funnels allow you to specify the “prioritization criteria” that will be automatically applied to the full set of issues, discarding the issues that don’t meet the criteria. The resulting set will contain the most important issues to remediate.
Xygeni’s Prioritization Funnels are available for any kind of security risks and are available under the All Risks section and selecting on the Prioritization funnel button .
The main funnel (feed with all types of risks) is available at All Risks menu option (at the top-left). But you can also find risk-specific funnels under any “Risk” option in the different products available at the left-menu (SAST), SCA, CI/CD) security, Secrets, Infrastructure as code, Malware, Build Security and Anomalous Activity) .
Xygeni comes with some out-of-the-box predefined Funnels
In the filters of any funnel, click on the “Funnel” filter and the available funnels are displayed:
** Xygeni General Prioritization
** Xygeni CI/CD Prioritization
** Xygeni IaC Prioritization
** Xygeni SAST Prioritization
** Xygeni Secrets Prioritization
The funnel will be displayed based on “Severity” by default. By clicking on the “Split by” filter, you can make the funnel to be based on several categories (Malicious Code, IaC, Secrets, CI/CD, Open Source, etc) as well as severity.
At the bottom of the page, there is a filter box where you can select which issues you want to see.
Funnel Phase, allows you to filter by any specific funnel criteria. If you select any of them, the issues list will contain the items filtered until the selected criteria
Once you select on a funnel phase, the table will show the issues contained in the selected phase. You can further refine your search by selecting additional filters.
Out-of-the-box funnels are preceded with ** to differentiate to and cannot be modified.