Connect APVISO with Grafana

How APVISO Integrates with Grafana

APVISO's Grafana integration brings vulnerability metrics into your monitoring dashboards. For teams that use Grafana as their observability platform, this integration means security posture is monitored alongside uptime, performance, and infrastructure health in a single pane of glass.

Data Source Plugin

The integration works through a custom Grafana data source plugin that queries the APVISO API. Once installed and configured with your APVISO API key, the data source provides time-series and table data for vulnerability metrics. You can query finding counts by severity, remediation velocity, scan frequency, mean time to remediation, and findings by category or target.

The plugin supports Grafana's standard features including time-range selection, variable templating (filter by target, severity, or category), and ad-hoc filters.

Pre-Built Dashboards

APVISO provides pre-built Grafana dashboards that give you immediate visibility. The Security Posture Overview dashboard shows total open findings by severity, a trend line of findings over time, remediation velocity, and top affected targets. The Scan Activity dashboard tracks scan frequency, duration, and finding counts per scan. These dashboards can be imported from Grafana's dashboard marketplace and customized to your needs.

Unified Monitoring

The real value of the Grafana integration is context. Place a vulnerability severity breakdown panel next to your application error rate panel, your infrastructure health panel, and your deployment frequency panel. This unified view helps teams understand how security posture relates to operational health. A spike in vulnerabilities after a deployment is immediately visible, and the correlation with deployment metrics helps identify the root cause.

Alerting on Security Metrics

Grafana's alerting engine works with APVISO data. Define alert rules that fire when Critical finding count exceeds zero, when total open High findings exceed a threshold, when mean time to remediation exceeds your SLA target, or when a target has not been scanned within your required frequency. Alerts route to your existing notification channels — Slack, email, PagerDuty, or any other Grafana-supported contact point.

Team and Executive Dashboards

Create different dashboard views for different audiences. The security team dashboard shows detailed finding breakdowns, scan logs, and remediation queues. The executive dashboard shows high-level metrics: risk trend over time, SLA compliance, scan coverage, and comparison across targets. Grafana's access controls ensure each audience sees the appropriate level of detail.