PREREQUISITEAt least one project (a repository or subfolder in a monorepo) that scans for dependencies through Semgrep Supply Chain. See Scan third-party dependencies.
View advisories
To see the advisories relevant to your Semgrep organization:1
Sign in to Semgrep AppSec Platform.
2
Advisory details
For each advisory listed, you can click the entry to view additional details, including:- A description
- Reference links
- The rule Semgrep uses to match your code
- Affected projects
Identify findings associated with an advisory
You can use the Advisories page to see if any of your projects are affected by a specific incident:1
Sign in to Semgrep AppSec Platform.
2
3
Using the filter, provide the relevant CVE or keywords.
4
Click the advisory in the results list to open up the Details page.
5
Go to Affected projects.