Visualization library

Release version: Xanadu

Updated November 18, 2025

2 minutes to read

The Visualization library lists all the widgets that you can use to visualize and categorize findings. It includes a set of default widgets and any custom widgets that you create for organization-specific reporting. You can browse the available widgets, understand the data they use, and add them to dashboards to build tailored security exposure views.

You can use the Visualization library to:

Explore available widgets: Review the complete set of default and custom widgets available for building dashboards.
Understand widget behavior: Review key details such as data sources, grouping, visualization type, and activation status to choose the appropriate widget for your analysis.
Create a custom widget: Build and configure your own widgets to visualize specific metrics or data insights that matter most to your organization.

The following table lists the available widgets, associated tables, and what they display.


Widget name	Findings tables	Description
Deferred findings by reason	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active deferred records grouped by reason.
Findings by assignment group	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records assigned to various assignment groups.
Findings by base image	Container vulnerability	Active records categorized by the type of the image.
Findings by CI class	Infrastructure vulnerability Application vulnerability Misconfigurations	Active records categorized by CI classes.
Findings by cloud resource	Infrastructure vulnerability Misconfigurations	Active records categorized by various cloud resources.
Findings by remediation status	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records grouped by remediation status.
Findings by risk rating	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records categorized by the risk ratings. 1: Critical 2: High 3: Medium 4: Low 5: None
Findings by scan type	Infrastructure vulnerability	Active records grouped by the scan type.
Findings by source	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records grouped by the source.
Findings by state	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred).
Findings by technology	Misconfigurations	Active records categorized by technology.
Findings by test group	Misconfigurations	Active records categorized by the test groups.
Findings by Vulnerability	Infrastructure vulnerability Application vulnerability Container vulnerability	Active records categorized by vulnerability.
Findings by Vulnerability Classification	Infrastructure vulnerability Application vulnerability Container vulnerability	Active records categorized by vulnerability classification.
Findings not in remediation task	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records that are and aren't part of the remediation task.
Findings on external-facing assets	Infrastructure vulnerability Application vulnerability Misconfigurations Container vulnerability	Active records categorized by the asset exposure to internet.
Findings with exploits	Infrastructure vulnerability Application vulnerability Container vulnerability	Active records with and without known exploits.

If your instance uses localization, make sure that the widget titles show up correctly in all supported languages. Default widgets already include translated titles.But if you update a default widget, create a custom widget, or rename a widget, remember to add or update the translation entry. This keeps titles consistent across languages. For steps, see Localize widget titles.