Targets, baselines, and variants
What to scan - repo/branch, image/tag, app/version, and baseline (root) element.
Severity scores and levels
How issue severity scores and levels are calculated.
Scan output variables
Output variables (issues by severity) generated by scan steps.
Fail pipelines based on scan results
Fail the pipeline if any issue meets or exceeds the specified severity.
Exemptions for specific issues
You can expempt specific issues from STO failure policies.
STO scan modes
Ingest results using orchestration, ingestion, and extraction.
Orchestration mode
Scan a target and ingest the results in one step.
Ingestion mode
Configure a step to ingest scan results from a data file.
Extraction mode
Extract and ingest results from SaaS scanners