Configuration

Overview

The Configuration page is where you set up all integrations, credentials, and platform settings. Most changes on this page require the admin role.

Tool Credentials

Four cards are displayed for the supported security tools: Snyk, Cycode, Wiz, and Tenable. Each card shows a Configured or Not Configured status badge.

Fields per tool:

  • Snyk — API Token, Org ID, Base URL
  • Cycode — Client ID, Client Secret, Base URL
  • Wiz — Client ID, Client Secret, API URL
  • Tenable — Access Key, Secret Key, Base URL

Each tool also has a Sync Schedule field that accepts a cron expression to control automatic sync frequency.

All credentials are encrypted at rest using Fernet symmetric encryption. Each card provides Save and Delete buttons.

Jira Integration

Jira integration is split into two sub-sections:

Credentials

  • Base URL — your Jira instance URL (e.g. https://your-org.atlassian.net).
  • Email — the Jira account email used for API access.
  • API Token — an Atlassian API token for authentication.

Severity Filter

Checkboxes for Critical, High, Medium, and Low. Only findings that match the selected severity levels will create Jira issues during a sync.

SLA Configuration

Set remediation deadlines in days for each severity level. These values determine the due date assigned to Jira tickets created from findings.

Severity    Default (days)
─────────── ──────────────
Critical    30
High        60
Medium      90
Low         180

EPSS Enrichment

The EPSS enrichment section displays the following metadata:

  • Last Sync — timestamp of the most recent EPSS data refresh.
  • CVEs Cached — total number of CVEs stored locally.
  • Next Sync — scheduled time for the next automatic refresh.

Click "Sync EPSS Data" to manually trigger a refresh from the EPSS data feed. EPSS scores enrich findings with exploit probability and exploitability ratings, helping teams prioritize remediation.

GitHub Integration

Credentials

  • Personal Access Token — a GitHub PAT with repo and read:org scopes.
  • API Base URL — defaults to https://api.github.com; override for GitHub Enterprise.

Organizations

A textarea where you list GitHub organization names, one per line. Wildcard patterns are supported to match multiple repositories within an organization:

my-org
another-org/frontend-*
another-org/backend-*

Sync Schedule

A cron expression that controls automatic repository discovery. The default schedule runs daily at 3:00 AM:

0 3 * * *