This guide explains how to use the finding table token in reports using a query string-like syntax.
Basic Structure
The token uses URL-style parameters separated by & characters. For example:
{Finding_Table?columns=title,cvss_score,severity,description,
remediation,asset_count&setting.filter.labels=pci}
This will be replace by a table of Findings that contain the label pci, with the following columns: title, cvss_score, severity, description, remediation and asset_count.
Configuration Sections
1. Required parameters
These are the required parameters and their options. You can find all the available fields here:
columns=[field1, field2]&
2. Grouping
Findings can be grouped by asset if desired:
group_by=asset&
3. Filtering and Sorting (Optional)
Filter findings by various criteria:
setting.filter.type=Vulnerability&
setting.filter.status=ReadyRetest,PendingFix&
setting.filter.severity=Critical,High&
setting.filter.labels=Security,PCI-DSS&
setting.sort.direction=Ascending&
HTML Structure and CSS Classes
The Finding Table token generates tabular data organised by groups (typically assets) with configurable columns.
Root Container
<div class="finding-table-container">
Purpose: Top-level container for all table content
CSS Classes:
-
finding-table-container: Base wrapper class
Group Headers
Purpose: Displays the group identifier (e.g., asset name) when group_by is configured.
CSS Classes:
finding-table-header
Table Structure
<table class="finding-table">
<thead>
<tr>
<th class="table-header [column-name]">Column Display Name</th>
</tr>
</thead>
<tbody>
<tr>
<td class="table-cell [column-name]">Cell Content</td>
</tr>
</tbody>
</table>
CSS Classes:
-
finding-table: Base table styling -
table-header: Header cell base class -
table-cell: Data cell base class -
[column-name]: Column-specific class (e.g.,title,severity,cvss_score)
Examples
Table with vulnerabilities (Name, CVSS, Severity, Description, Recommendation, Affected Assets (count))
{Finding_Table?columns=title,cvss_score,severity,description,remediation,asset_count&
setting.filter.type=Vulnerability}
Table with vulnerabilities (Severity, Code, Vulnerability, Description, Recommendation)
{Finding_Table?columns=severity,code,title,description,remediation&
setting.filter.type=Vulnerability}
Tables with observations, grouped by Asset
{Finding_Table?columns=title&group_by=asset&setting.filter.type=Observation}