Crazy Health scan report by ServiceNow :/

Go to solution
Suggy
Giga Sage

‎12-12-2024 09:44 AM - edited ‎12-12-2024 05:41 PM

ServiceNow Health scan report findings/recommendations talk about things like

- Dont use GlideRecord/GlideAggregate in ACLs

- Client-side code should not use GlideRecord

- Client Scripts should check for isLoading and return etc

 

When we checked them, most of them are OOB scripts.

 

Q1 - Why ServiceNow says not to do so and then ships OOB with the such scripts? Its a new instance though! 

Q2 - Is ServiceNow expecting us to correct OOB scripts? (additional work for us)

Q3 - Can as ask ServiceNow to exclude scanning of OOB scripts?

 

0 Helpfuls
  • 737 Views
1 ACCEPTED SOLUTION

Go to solution
Anand Kumar P
Giga Patron
Giga Patron
In response to Suggy

‎12-12-2024 10:41 PM

Hi @Suggy ,

 

Yes,  i worked on health scan findings for one of our customer. You will have a call on weekly basics with servicenow poc. In that call you can highlight this thing,  they will have some button in helathscan tool to exclude and they will add comments its OOB script.

 

If my response helped, please mark it as the accepted solution and give a thumbs up👍.
Thanks,
Anand

View solution in original post

0 Helpfuls
4 REPLIES 4

Go to solution
Anand Kumar P
Giga Patron
Giga Patron

‎12-12-2024 10:11 AM - edited ‎12-12-2024 10:14 AM

Hi @Suggy ,

 

The ServiceNow Health Scan evaluates both custom and out-of-the-box (OOB) scripts. For OOB scripts that have been modified by an admin, you must request ServiceNow to exclude them from the scan. For purely OOB scripts flagged in the scan, you need to provide justification to ServiceNow, so they can remove them from future scans. Avoid editing or updating any OOB scripts. Check its act or recommend or discuss only if its act you have to resolve.

 

In some cases, the scan might suggest using UI Policies instead of Client Scripts; however, if Client Scripts are necessary for the business use case, document these scenarios and send them to ServiceNow for review. This will ensure they are excluded from the next health scan.

 

If my response helped, please mark it as the accepted solution and give a thumbs up👍.
Thanks,
Anand

0 Helpfuls

Go to solution
Suggy
Giga Sage
In response to Anand Kumar P

‎12-12-2024 05:42 PM

Hi @Anand Kumar P  I am just concerned about OOB scripts coming in the findings.

Are you sure we as ask ServiceNow to exclude scanning of OOB scripts?

0 Helpfuls

Go to solution
Anand Kumar P
Giga Patron
Giga Patron
In response to Suggy

‎12-12-2024 10:41 PM

Hi @Suggy ,

 

Yes,  i worked on health scan findings for one of our customer. You will have a call on weekly basics with servicenow poc. In that call you can highlight this thing,  they will have some button in helathscan tool to exclude and they will add comments its OOB script.

 

If my response helped, please mark it as the accepted solution and give a thumbs up👍.
Thanks,
Anand

0 Helpfuls

Go to solution
Suggy
Giga Sage
In response to Anand Kumar P

‎12-15-2024 11:09 PM

Thank you for your response @Anand Kumar P 

0 Helpfuls