Understand your dashboard

Your dashboard provides an overview of your overall security posture. You can get to your dashboard by clicking the home icon on the sidebar.

Dashboard overview

This represents your total SBOMs and vulnerabilities across all time. The date range filter does not apply to these widgets.

  • Total products: This shows the total number of products that you have managed since you began using Helm.

  • Ratio of product versions with SBOMs: This percentage shows you the number of product versions that your team has created/uploaded SBOMs for.

Vulnerabilities over time

These widgets represent your vulnerabilities for a selected date range. You can view this for all versions within a product or for a particular product version.

  • Vulnerabilities: This shows the number of vulnerabilities that you have for the selected criteria.

  • Critical severity vulnerabilities: This shows the number of critical-level (CVSS score of 9-10) vulnerabilities that you have for the selected criteria.

  • Unremediated vulnerabilities: This shows the number of unremediated vulnerabilities that you have for the selected criteria.

Top 5 impacted products

Each donut chart represents the total number of vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions, as well as the percentage of vulnerabilities in each level of severity.

You can view these widgets across all of your products and versions, or filter down to view particular products and versions.

Severity:

  • Total vulns (in donut chart): This is the total number of vulnerabilities across this product within the selected date range.

  • Critical severity: This is the number of critical severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

  • High severity: This is the number of high severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

  • Medium severity: This is the number of medium severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions.

  • Low severity: This is the number of low severity vulnerabilities that have been detected in each of your products across all of their respective SBOM components, within the selected date range, products, and versions

Get more details: Click the View details button to drill down into details for that product.

Top 5 vulnerable dependencies

This shows your top 5 most vulnerable components within the selected date range, products and versions.

  • Dependency name: This shows the name of the component that is contained within your selected products and versions.

  • Version: This shows the version for the component that is contained within your selected products and versions.

  • Supplier: This shows the supplier for the component that is contained within your selected products and versions.

  • Total vulnerabilities: This shows the total number of vulnerabilities that you have not yet remediated for this component.

  • Products impacted: This shows the number of your products that are impacted by this component, meaning that the corresponding SBOM contains this component. If you are viewing one product, this will show 1/1, but if you are viewing all of your products, this will show 1/n, with n being your current number of products.

  • Products impacted %: This shows the number of your products impacted by this component across your selected products. If you are viewing 1 product, this will show 100%, but if you are viewing all of your products, this will show the percentage of your products that are impacted.

  • Actions: You can click the View button to drill down to view how many times a component is used across your selected products and versions.

    • From the search results, click Jump to product or Jump to vulnerabilities. If you jump to this product, you’ll be able to see which product and product versions contain that component and version.

    • From the Actions > … button, you can choose to view more details, add a review note, view review history, and more.

    • If you jump to vulnerabilities for this component, you can view the applicable vulnerabilities. From the Actions > … button, you can manage each vulnerability, including adding review notes and setting the Resolution. If you change this resolution, it will update the Product impact status.

Add your first product:

  1. In the product drop-down, click Create product.

  2. Click this to specify the product name, then click Save.

  3. To view your new product, click the Products option in the sidebar. Your new product will be selected in the products drop-down.

  4. You’ll now need to add a version for this product. In the version drop-down, select Create version.

  5. Specify the version, then click Save. Your new product version will be selected. You’re now ready to upload your SBOM.

Last updated

Was this helpful?