Repositories

You can reach the Repositories Inventory page either by selecting Projects in the top tab of the Inventory page.

The Inventory Projects page contents are different depending on if you have selected a group of projects or a single project.

Group of Projects

For a group of projects, the page shows:

  • Total number of projects in the group

  • Number of files and total size of the group

  • Number of commits and daily rate

For every project, it also display information about the number of issues by Asset Category (coloured by highest priority with issues)

For each project, detailed information regarding the number of issues organized by asset category is provided. Highlighted by the highest priority in a corresponding color scheme.

Clicking on the icon of every project will show a slide with detailed information about the project.

The Summary tab provides general information and offers the option to download the SBOM of that project.

The other tabs (SCM, Package Manager, CI/CD, AppSec and Deploy) show the project's assets by category.

Selecting a single asset will show additional info about the asset as well as assocaited security risks.

Single Project

In case you have selected a single project into the Project Selector, the information displayed will be relative to the selected project:

  • Number of files and size

  • Number of commits and daily rate

  • Creation date, last code change, etc

  • Team and Contributors of the project

  • Programming languages

The bottom panel shows aggregated information about the assets of the project.

See Inventory (panel and slides) for further details.

Inventory (Panel and Slides)

The bottom panel of the Repository Inventory page for a single project shows data about the assets of the selected project, grouped by:

  • SCM (repository platform, issues by severity, # of commits)

  • Package Manager (pkg managers used by the project, # of packages, issues by severity)

  • CI/CD (CI/CD platform, number of pipelines, number of plugins, issues by severity)

  • AppSec (appsec tools used, etc)

  • Deploy and provisioning (cloud platforms, number of cloud resources defined in IaC files, issues by severity)

By clicking on a specific asset you will see the details of that asset:

Inventory (Dependency Graph)

Accessing the Dependency Graph will present a comprehensive visualization of all assets and their interconnections within the selected project. Utilize the available filters to refine the diagram according to your requirements.

Select an asset to view a detailed slide:

Download the SBOM

Selecting "Download SBOM" allows to generate and download the project SBOM in Cyclon DX or SPDX formats.

Last updated