availability
Package: Invicti AppSec Core (on-demand), Invicti AppSec Enterprise (on-premise, on-demand)
User permission matrix
This table shows the permissions that each user role has in Invicti AppSec. Each role can access different features and functions within the platform.
Permission matrix
| Permission | Admin | Business Unit Lead | Product Owner | Team Lead | Developer | Pentester |
|---|---|---|---|---|---|---|
| View organizational dashboard | ✓ | ✓* | ✓* | ✓* | ✓* | |
| View business units in filters under org. dashboard | ✓ | ✓* | ||||
| View projects | ✓ | ✓* | ✓* | ✓** | ||
| Add projects | ✓ | ✓ | ||||
| Edit projects | ✓ | ✓* | ||||
| Delete projects | ✓ | ✓* | ||||
| Scan projects | ✓ | ✓* | ||||
| View files in projects | ✓ | ✓ | ||||
| Import files to projects | ✓ | ✓ | ||||
| View images in projects | ✓ | ✓ | ✓ | |||
| Add products | ✓ | ✓ | ||||
| Edit products | ✓ | ✓ | ✓ | ✓ | ||
| Delete products | ✓ | ✓ | ||||
| View products | ✓ | ✓ | ✓ | ✓ | ||
| View projects under products | ✓ | ✓ | ✓ | ✓ | ||
| Access projects under products | ✓ | ✓ | ✓ | ✓* | ||
| Add/remove business units to products | ✓ | ✓ | ||||
| Add/remove projects to products | ✓ | ✓ | ✓ | ✓ | ||
| Add/remove teams to products | ✓ | ✓ | ✓ | |||
| Add/remove product owners to products | ✓ | ✓ | ||||
| View vulnerabilities | ✓ | ✓ | ✓ | ✓ | ✓ | ✓** |
| View duplicate vulnerabilities | ✓ | ✓ | ✓ | ✓ | ||
| Add screenshots to vulnerabilities | ✓ | ✓ | ✓**** | ✓** | ||
| Manually import vulnerabilities | ✓ | ✓ | ✓** | |||
| Close manually imported vulnerabilities | ✓ | ✓ | ||||
| Assign / unlink issues | ✓ | ✓ | ✓ | ✓ | ||
| Mark as false positive | ✓ | ✓ | ||||
| Mark as risk accepted | ✓ | ✓ | ✓ | ✓ | ||
| Mark as true positive | ✓ | ✓ | ✓ | ✓ | ✓ | |
| Change severity | ✓ | ✓ | ||||
| Leave comments | ✓ | |||||
| View comments | ✓ | ✓ | ✓ | ✓ | ✓ | |
| Request suppression | ✓ | |||||
| Approve suppression | ✓ | ✓ | ||||
| View SBOM | ✓ | ✓* | ✓* | ✓* | ✓* | |
| View users | ✓ | ✓*** | ||||
| Add users | ✓ | ✓*** | ||||
| Edit users | ✓ | ✓*** | ||||
| Delete users | ✓ | |||||
| View teams | ✓ | ✓ | ||||
| Add teams | ✓ | ✓ | ||||
| Edit teams | ✓ | ✓ | ||||
| Delete teams | ✓ | |||||
| Create / download reports | ✓ | |||||
| Enter remediation advice | ✓ | ✓ | ✓ | |||
| Add labels | ✓ | |||||
| Edit labels | ✓ | |||||
| Delete labels | ✓ | |||||
| View ASVS | ✓ | ✓ | ✓ | |||
| View logs | ✓ | |||||
| View committer benchmark | ✓ | ✓* | ✓* | ✓* | ||
| View automation | ✓ | |||||
| View integrations | ✓ | |||||
| Enable integrations | ✓ | |||||
| Edit integrations | ✓ | |||||
| Disable integrations | ✓ |
Permission notes
info
These notes apply to specific permissions in the matrix above:
- ✓*: Shows only data related to the projects the person can access
- ✓**: Users with pentester roles can view and take actions only on vulnerabilities they've added or imported to Invicti AppSec in projects where they're assigned as a pentester
- ✓***: Team leads can only add and edit developers
- ✓****: Shows only the ones they've added (not those other developers created)
Need help?
The Invicti Support team is ready to provide you with technical help. Go to Help Center
Was this page useful?