The Exposure management over time (%) chart shows you the percentages of open, accepted, and closed vulnerabilities over time and their severity level according to our CVSSF metric. Thanks to this chart, you can visualize a timeline showing how vulnerabilities of different severity levels have been managed.

Let us know what you think about this chart by writing us in this post or emailing us at help@fluidattacks.com. We invite you not to miss our weekly announcements on our News channel.

If you need to change some fields in the information section in Scope, you have the flexibility to do so at any time. When modifying old information for new, you will get an Information Updated notification which will show you the recent changes put in this section. Thanks to the Information Updated notification, you will be able to be aware of the changes made.

You can find this and other notification information we have for our ARM here. We invite you to subscribe to our News channel, where we publish weekly information about the ARM and the standards we apply to our security checks.

We are pleased to announce that you can now enjoy the new section of ARM called Compliance. In this section, you can visualize the percentage of compliance your organization and groups have concerning different cybersecurity standards. Thanks to this section, you will be able to see how your organization is positioned concerning other companies.

If you want to know more about this section, click here. We are always happy to improve for our customers. Tell us what you think about this section, leave us a comment in the post or write us at help@fluidattacks.com

On the ARM, you have the lists of authors who have modified your groups' repositories for each month. To see any of them, in the Authors section of your groups, you only need to click on the date at the top left and, from the drop-down menu, select the month you are interested in.

Thanks to this information, you will be able to know correctly which authors contributed in the month you need to know, giving us complete, correct, and fast information. We invite you to subscribe to our News channel to receive weekly short posts like this.

Do you understand the information given by the Header we have in the Locations section?  You can see this after you click on any type of vulnerability. The Header gives us global information such as Type of vulnerability, severity level based on the CVSS score, its open or closed status, the number of open vulnerabilities, the date it was first reported, and the estimated time to remediate it.

Thanks to this header, you can learn quick information about the type of vulnerabilities reported in your systems, including how much time we estimate it will take you to remediate them. We invite you not to miss any of these updates by subscribing to our News channel.

We are pleased to announce that our new Minimum Severity feature is now available. You can configure the CVSS (Common Vulnerability Scoring System) severity range you want to receive when you activate the Vulnerability Alert notification. Thanks to this enhancement, you can customize the messages you receive and know about the severities reported based on the score you are interested in. 

If you have any questions or suggestions, leave us a comment here or email us at help@fluidattacks.com. Don’t forget to subscribe to our News channel.

On the ARM, we refer to as authors all developers or professionals that contribute to software development in your repositories. Having the authors in your groups registered to the platform makes it easier for you to assign and remediate vulnerabilities. In the Authors section, you can invite them with a single click. For further details, follow this link.

If you have any questions or suggestions, leave us a comment here or email us at help@fluidattacks.com. Don’t forget to subscribe to our News channel.

With good security standards implemented in your software, you will be able to mitigate risks more effectively. We are excited to announce the security standard we are applying at Fluid Attacks: the OWASP Software Assurance Maturity Model (SAMM) is an open framework to help organizations formulate and implement a strategy for software security that is tailored to the specific risks facing the organization.

The version used in this section is OWASP SAMM v1.0. Remember, You can find this and other standards we are applying at Fluid Attacks in the Compliance section of our Documentation. We invite you to subscribe to our News channel, so you don't miss announcements about our platform and its improvements.

In your organizations, groups and portfolios in Analytics section you have a pie chart called Vulnerabilities by source. This chart gives you a distribution of the percentages of vulnerabilities that, in your case, we found in applications, source code and infrastructure.

Bear in mind that the information in this chart will vary depending on whether you are viewing it for one of your organizations, groups or portfolios. We are happy to improve our platform and enhance your experience constantly.

We are pleased to announce that the To-Do List view of our ARM has new improvements, such as: Displaying the Group name of your vulnerability, redirection to the evidence view and description of this same, and display of the classification of tags, among others. Be the first to go and see these improvements and enjoy this feature for your daily work.

Let us know what you think of these improvements by leaving a comment in the post or writing to help@fluidattacks.com. You can access our documentation by clicking here to learn more about this amazing tool.