Continuous projects are suitable for projects that don't have a specific end-date or are never completed, for example:
- Vulnerability assessments
- SOC
We support two use cases: working with Runs and Real-time.
You can choose the use case in the Project Template or Project Settings:
Runs: for periodic scans
When you work with Runs, you can do a Scan iteration on a weekly or monthly basis for example. This is suitable for periodic Vulnerability Assessments for example.
Working with Runs
When you start, you can add or import findings to a Draft Run. Once you have all the findings present, you can Complete Run in the Runs Tabs. This will merge the findings to the existing findings from a previous run. In this merge process, the platform will check which findings are New and Fixed compared to the previous run.
Clients only see findings from Completed Runs.
New vs Fixed
When you complete a run, the platform calculated the New and Fixed runs compared to the previous run.
New: The finding was not present in the preview Run
Fixed: The finding was present in the previous Run but not in the Draft/Latest one.
Processing Run Complete
When the Draft Run is completed, which happens when you manually Complete Run or after the Integrated Scanner runs, you can determine the following options:
Fields data on finding match:
- Keep existing finding fields data - when a finding matches a previous one, no data is modified.
- Override fields data with new matched finding - when a finding matches a previous one, this option will override finding fields (recommendations, remediation, description, etc) with the new found finding.
Close Finding when:
- There is no matching Finding - This closes the finding to the Fixed status when the Finding is not in the Draft Run.
- There is no matching Finding and Assets are up (there are other Findings for the same Assets) - This checks if the Asset is up by the presence of any finding for that Asset. This option should be using in combination with the "Not aggregate findings evidence" in the import, so you get 1 finding per Asset. When the Finding is not present in the Draft Run, but the Asset is up, the Finding is marked as "Not Found", but it's not closed, keeps current status.
Real-time: for ongoing scenarios
When you want to have a ongoing project where findings are not linked to runs then you can use the Real-time use case.
Client will see all findings visible to Client.