Scan results
View and manage your scan results and audit trail.
Overview
The scan results page keeps a full record of every repository scan your organization has run. Scan records are kept indefinitely for audit purposes.
Results table
The results table displays all scans with the following information:
- Repository: Owner and name of the scanned repository
- Status: Current state — Completed, Failed, Cancelled, or Scanning
- Risk score: AGRS letter grade (A through F) and numeric score, if calculated
- Findings: Total detections: libraries, API calls, secrets, security issues
- Files scanned: Total source files analyzed
- Duration: Time taken to complete the scan
- Triggered by: User who initiated the scan, or "Scheduled" for automated scans
Click any completed scan row to see its full results: risk score, library findings, API calls, secrets, and security issues.
Scan status
Each scan has one of the following statuses:
Completed
Scan finished successfully. Results are available for review.
Scanning
Scan is currently in progress.
Failed
Scan encountered an error. Check error message for details.
Risk score column
Each completed scan shows a letter grade badge (A through F) with the numeric score. Scans without a calculated score show a dash. To generate one, open the scan details and click Calculate risk score.
Sorting, filtering, and search
Click column headers to sort. Use the filter button to narrow by status, repository, or who triggered the scan. The search box filters by repository name in real time. The table paginates if you have a lot of scans.
Managing scan results
Delete a scan record by clicking the trash icon. This is permanent and removes all its findings. Export or document anything you need before deleting.
Rescanning repositories
To rescan a repo, go to the scan results page and click Rescan. This creates a new scan record and keeps the original for comparison. You can also start a new scan from the Scan page or set up a scheduled scan in Repositories.