Skip to main content
availability

Package: Invicti AppSec Core (on-demand), Invicti AppSec Enterprise (on-premise, on-demand)

Configure issue managers

This document explains how to add and configure issue managers for your projects in Invicti AppSec. All issue managers are available regardless of your package type.

Issue manager configuration allows you to automate vulnerability and finding routing to appropriate team members or external systems, streamlining your security workflow and faster remediation.

Available issue managers

All Invicti AppSec customers have access to the complete suite of issue manager integrations, including:

  • GitHub
  • And many other integrations

The complete list of available issue managers can be viewed in Integrations > Issue managers.

Issue manager workflow

The issue manager process consists of three main steps:

Step 1: Activate issue managers

You must first activate issue managers under Integrations before you can add them to projects. For instructions on how to activate issue manager integrations, refer to Activate issue managers.

Step 2: Add issue managers to project

After activating issue managers, add them to specific projects:

  1. Navigate to Inventory > Projects from the left side menu.
  2. Click the project name to open the project dashboard.
  3. Click the Settings tab and open the Issue managers section.
  4. Use the dropdown to choose from available issue managers.
  5. Continue with the next step.
info

Only issue managers that have been activated under Integrations > Issue managers appear as available options for your project.

Step 3: Configure issue managers

Configure issue manager settings to meet your specific requirements:

  1. Whilst in your project's Settings tab in the Issue managers section, specify the following fields:
    • Issue manager: use the dropdown to select the Issue Manager from the list
    • Issue path: enter the URL of the repository where you wish to save the found issues
    • Push flags on Invicti as labels: enable to automatically apply Invicti flags as labels on created issues for better categorization and filtering
    • Group SCA findings: by default, Invicti creates separate issues for each SCA finding. Enable this checkbox to create a single issue for findings discovered in the same component
    • Correlation Assistant: let Correlation Assistant group similar vulnerabilities into a single ticket
  2. Click Save to apply your issue manager configuration.
tip

To automatically verify that resolved issues are truly fixed, consider setting up validation scans that trigger when issues are closed.

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Last updated on
Was this page useful?