Ctrlk
Get FDA readyServicesGuardian helpGet a demo
For the complete documentation index, see llms.txt. This page is also available as Markdown.

Leverage AI-powered vulnerability guidance

Note: AI recommendations are meant to supplement, not replace, security expertise. Always validate suggestions against your specific environment and security policies.

Helm provides AI-powered vulnerability guidance to help you fix or mitigate security vulnerabilities faster. Get actionable mitigation strategies, upgrade recommendations, and technology stack insights backed by source documentation.

Get AI guidance for vulnerabilities

  1. In the sidebar, click the Vulnerabilities item.

  2. Select one or more vulnerabilities you want to review.

  3. Click the Get AI guidance button in the toolbar.

  4. Wait for the AI analysis to complete. If you haven't generated AI guidance for these vulnerabilities before, this may take a few minutes.

  5. Review the comprehensive guidance panel that appears. The AI guidance panel provides:

  • Short-term mitigations: Immediate workarounds and temporary fixes

  • Long-term solutions: Permanent fixes and remediation strategies

  • Specific upgrade recommendations: Exact versions and components to upgrade

  • Source documentation: Links and references for validation and further research

View affected technology stacks

This feature is currently in beta.

Make sure this column is visible on your Vulns list

  1. In your Vulnerabilities list, click the Columns link at the top of the table.

  2. Enable the tech stack tags column.

View affected technology stack insights

  1. Click Filters in the toolbar to display all available component filters.

  2. In the Tech stack section, select the tech stacks you'd like to check in the Impacted tech stacks filter. You can also check for explicitly Not impacted tech stacks, but these are less common.

  3. In the Affected tech stack column, you'll see orange warning badges with the name of the affected tech stack, or gray badges if the tech stack is explicitly listed as not affected in the sources we've referenced. If there are multiple affected tech stacks, click the X tech stacks badge to get aggregate information on how to mitigate these affected tech stacks.

  4. Scroll down to the AI recommendations section of the modal that displays.

  5. Review detailed information about:

    • Affected technology stacks

    • Stack-specific upgrade recommendations

    • Targeted short-term mitigations

    • Supporting source documentation

Understanding AI recommendations

What the AI analyzes

The AI system evaluates:

  • Vulnerability details and severity

  • Affected components and versions

  • Available patches and updates

  • Technology stack context

  • Industry best practices

Types of recommendations

  • Immediate actions: Steps you can take right away to reduce risk

  • Upgrade paths: Specific version updates that address the vulnerability

  • Configuration changes: Security settings that may mitigate the issue

  • Alternative solutions: When direct fixes aren't available

Best practices

Use AI guidance effectively

  • Start with high-severity vulnerabilities for maximum impact

  • Validate recommendations using the provided source documentation

  • Consider your environment when implementing suggestions

  • Test changes in non-production environments first

Manage multiple vulnerabilities

  • Group similar vulnerabilities when requesting AI guidance

  • Prioritize based on exploitability and business impact

  • Track implementation progress in your issue management system

  • Document decisions for future reference

Current limitations

  • Beta feature: Technology stack detection is still being refined

  • Source validation: Always verify recommendations against official documentation

  • Environment-specific: Some recommendations may not apply to all environments

  • Update frequency: AI recommendations reflect information available at the time of generation

Troubleshooting

AI guidance not available or disabled

  • Check permissions: Ensure you have access to vulnerability details

  • Verify selection: Make sure you've selected at least one vulnerability

  • Refresh the page: Try reloading if the button doesn't appear

Tech stack tags not showing

  • Enable the column: Make sure "tech stack tags" column is enabled

  • Clear cache: Try clearing your browser cache if tags don't appear

Recommendations seem incorrect

  • Check source documentation: Review the provided sources for context

  • Consider your environment: Recommendations may need adaptation for your specific setup

  • Contact support: Report issues to help improve AI accuracy

Other issues

If you encounter issues with AI vulnerability guidance:

  1. Check that you have appropriate permissions to view vulnerabilities.

  2. Contact support with specific examples of unexpected behavior.

The AI guidance system continuously learns and improves based on user feedback and new vulnerability intelligence.

PreviousUnderstand the CVSS vulnerability scoring systemNextImport remediations from source to target product version

Last updated

Was this helpful?