Scan Engine definitions

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • The Scan Engine uses a large set of definitions to correct coding and workflow findings in real-time and perform scans across your entire instance to detect existing findings.

    Pre-defined definitions

    There are various types of definitions available as a baseline in the Impact Scan Engine.

    Table 1. Scan Engine definition categories
    Category Description
    Security Measures implementation of protocols across a ServiceNow instance to prevent unauthorized access, data breaches, cyber attacks, and potential vulnerabilities.

    See Scan Engine definitions: Security for additional information.
    Performance Measures the efficiency of a ServiceNow instance, encompassing aspects such as speed, responsiveness, resource utilization, and overall dependability.

    See Scan Engine definitions: Performance for additional information.
    Manageability Measures the extent to which ServiceNow instances, applications, or infrastructure can be effectively monitored, configured, and maintained.

    See Scan Engine definitions: Manageability for additional information.
    Upgradeability Assesses the ease of enhancing a ServiceNow instance or application with new features, improvements, security patches, or compatibility adjustments.

    See Scan Engine definitions: Upgradeability for additional information.
    User Experience Evaluates the quality of user interactions with applications. Considers the ease of use, efficiency, design, responsiveness, accessibility, and its emotional and functional impact.

    See Scan Engine definitions: User Experience for additional information.

    For more information, see Configure Scan Engine properties.

    Custom definitions

    Users can create their own custom definitions. For more information, see Create custom Scan Engine definitions.
    Note:
    The number of custom definitions that is permitted varies based on your Impact package. For more information, see .

    Scan Engine definition suites

    Definition suites are groupings of similar definitions that allow administrators to target specific areas or functions of code during scans. This is useful as it allows scanning of the entire instance or all definitions. Admins can focus on a suite that represents a logical category (for example, JavaScript naming conventions, ITOM workflows, security hardening, and so on). This improves efficiency and precision in code quality checks.

    By default, the following suites are available:

    • Scan Engine
    • JavaScript Naming Conventions
    • Scoped Application
    • ITOM
    • Workflow Engine
    • Security and Instance Hardening
    • IL4 (Impact Level 4)
    • HR Scoped Applications
    • Artificial Intelligence Readiness
    Note:
    Only users with the sn_se.scan_engine_admin_role role can modify existing suites and their relationship with their definitions.

    For more information, see Customize Scan Engine definition suites.