For Recommend level findings, developers can submit exception requests if they feel the issue should not be considered a finding.
Before you begin
Role required: Scan Engine Admin (sn_se.scan_engine_admin).
Generally, exceptions require approval from a system administrator. However, certain settings configured by a system administrator may determine if the exception is automatically approved or rejected.
Procedure
-
From the finding (sn_se_finding) record, locate the Scanned Record field.
-
Select Scan Engine Exceptions.
The sn_se_finding record must be extending the sys_metadata table in order for the Scan Engine Exceptions button to be available.
This displays all applicable script issues identified by the Scan Engine that also qualify for an exception.
-
Enter the reason in the Exception Reason field for why an exception should be made for this finding.
-
Select Request Approval to have the exception reviewed by a system administrator.
If enabled, the exception state is Requested. If not, the state is Not Yet Requested.
-
Select OK to submit the exception request.
Once the exception request is saved, the applicable warning messages changes color as blue.
What to do next
For more information on configuring exception properties, refer to Configure exception reason properties.