Creating Components

In this article you will learn how to:

– Create a Component for an Application
– Create a Component for an Environment
– Edit the Component
– Import a list of vulnerabilities to the Component with CSV import file
– Delete the component

Prerequisites

– You should have access to the platform as an Org Admin user
– You should have at least one Application and/or Environment in the Organization
– A Scanner integration is already configured
– For importing vulnerabilities to component, Integration with a scanner with CSV import category should be set

Create a Component for an Application

  1. On the sidebar menu navigate to the Application Risk View tab
  1. On the Application Risk View page navigate to the list of applications
  1. Select a necessary application, click on the Edit icon
  1. On the Update Application page navigate to the Components section
  1. Click on Add Component button
  1. On Component information page select the scanner from the scanners list. You can select only one scanner from the list. Then press the Next button
  1. Select the component(s). You can select a few components from the list by marking the check-boxes. Then press the Next button
  1. On Components details step you can select Exposure of the component from the drop-down menu with Internal and External options; you can edit the components name
  1. Press Save button

The new Component is created and it appeared in the components list for the application.

Create a Component for an Environment

  1. On the sidebar menu navigate to the Environments tab
  1. On the Environments page navigate to the list of environments
  1. Select a necessary environment, click on the Edit icon
  1. On the Update Environment page navigate to the Components section
  1. Click on Add Component button
  1. On Component information page select the scanner from the scanners list. You can select only one scanner from the list. Then press the Next button
  1. Select the component(s). You can select a few components from the list by marking the check-boxes. Then press the Next button
  2. On Components details step you can select Exposure of the component from the drop-down menu with options: Internal or External; you can edit the components name
  3. Press Save button
    The new Component is created and it appears in the components list for the environment.

Edit the Component

  1. On the Application Risk View page select the application with component(s), that you want to update and click on the Edit icon
  1. On the Update Application page navigate to the Components section, select the component and click on the Edit icon
  2. On the Component information page you can change the scanner. Then press the Next button
  3. On the page with components you can change the component. Then press the Next button
  1. On Components details step you can update Exposure and (or) edit the components name
  2. Press Save button to save updates.
    The Component is updated.

The same rules apply to the editing component for Environment on the Environment page

Import a list of vulnerabilities into Component with a CSV file

  1. On the Application Risk View page select a necessary application from the list, click on the Edit icon
  1. On the Update Application page navigate to the Components section and click on Add Component button
  1. On Component information page select the scanner with the category CSV Import. Then press the Next button
  1. On the Component details page name your component and select the Exposure. Then press the Next button
  1. New component is created, it appeared in the components list. The component has CSV Import button
  1. Click on the CSV Import button to open the modal window with options: Download Template and Import CSV
  1. Click on the Download Template button. When the file is downloaded open it and create the list of vulnerabilities that you need to import to the component by example in the template.

Pay attention to IDs of vulnerabilities, they should be unique in the file.

  1. When the CSV file is ready for import click on Import CSV button on the modal, select prepared CSV file from your computer.

Vulnerabilities are imported to the component.
The same rules apply to the environment’s components.

IMPORTANT: if you need to import new vulnerabilities to the component where some vulnerabilities already exist, you should add the list of existing vulnerabilities to a new CSV file and add to them the list of vulnerabilities you need to import additionally. Otherwise, all existing vulnerabilities that are not included in the file will be closed.

Deleting a Component

  1. On the Application Risk View page select the necessary application with component(s), click on the Edit icon to open the Update Application page
  1. On the Update Application page navigate to the Components section, select the component that you want to delete from the application, and click on the Delete icon
  1. Delete icon triggered the confirmation modal. For deleting the component click Delete button on the modal

Component was deleted from the Application and disappeared from the components list

IMPORTANT: when you delete a Component you also remove all its vulnerabilities

Updated on September 7, 2021

Related Articles