Targets, baselines, and variants
What to scan - repo/branch, image/tag, app/version, and baseline (root) element.
Severity scores and levels
How issue severity scores and levels are calculated.
Scan output variables
Output variables (issues by severity) generated by scan steps.
Fail pipelines by severity
Fail the pipeline if any issue meets or exceeds the specified severity.
Exemptions to override Fail on Severity thresholds
Developers can request exemptions. Only SecOps can approve them.