Findings & Reports

Managing Finding Status

Track remediation progress using the finding status workflow — from open through to fixed, accepted risk, or false positive.

Finding Status Workflow

Every finding starts with a status of open. As your team triages and remediates vulnerabilities, you can move findings through the following workflow:

`open`

The finding has been identified but no action has been taken yet. This is the default status for all new findings.

`in_progress`

Your team is actively working on a fix. Set this status to signal that the vulnerability has been assigned and is being addressed.

`fixed`

The vulnerability has been remediated and verified. You can set this manually, or it is set automatically when a retest confirms the fix.

`accepted_risk`

Your team has reviewed the finding and decided to accept the risk rather than fix it. This is appropriate for low-severity issues where the cost of remediation outweighs the risk, or where compensating controls are in place. Adding a note explaining the risk acceptance decision is recommended.

`false_positive`

The finding is not a real vulnerability. This can happen when the AI agents misinterpret application behavior. Marking a finding as a false positive removes it from active metrics and helps APVISO improve its detection accuracy.

Changing Status

  1. Open the finding detail page.
  2. Click the current status badge.
  3. Select the new status from the dropdown.
  4. Optionally add a note explaining the change.
  5. Click Save.

Status changes are logged with the timestamp and the user who made the change.

Filtering and Sorting by Status

The Findings list supports filtering by status. Use this to:

  • View only open findings to see your current vulnerability backlog.
  • Filter by in_progress to check on active remediation work.
  • Show fixed findings to review what has been resolved.

Status in Reports

When you generate a scan report, finding statuses are included. This means reports reflect the current remediation state, making them useful for compliance audits and stakeholder updates.

Bulk Status Updates

Select multiple findings using the checkboxes and use the Bulk Actions menu to change their status at once. This is useful when closing out a batch of related findings after a deployment.

Back to Knowledge Base