The Finding Details option allows users to choose between multiple presentations of finding details information.
Configuring Finding Details
Step 1: Open the OWASP template.
Step 2: Go to the "OPTION TOGGLES" section of the setup code.
Step 3: Go to the nn.detailed_findings_option line. The number listed represents the option that will be leveraged. Modify the value as desired.
Step 4: Go to the bb.display_finding_status line. The default value will be set to true and will display whether the findings status is "Open", "In Process", or "Closed". If the default value is changed to false, the finding status will not be displayed.
Finding Details Options
Click each expandable section for more information.
Option 1 {%p set nn.detailed_findings_option = 1 %}
This option includes the following:
A title bar with metadata that has no borders between cells and includes CVSS data, if available
Rendering of additional fields as normal text outside any table cells
Sample Output
Characteristics of the Title Bar
Automatically generated reference numbers
Title
Severity
Automatic coloration
CVSS Score / Vector String (CVSS v3 if available, then CVSS v2)
Additional Fields
Presented in the following order:
Description
Recommendations
References
Finding Custom Fields (rendered in order as stored in the finding and include the label)
Blank rows are avoided by only rendering sections with data.
Option 2 {%p set nn.detailed_findings_option = 2 %}
This option includes the following:
A title bar with metadata (reference number, title, severity)
Rendering of additional fields as normal text outside any table cells
Sample Output
Additional Fields
Presented in the following order:
Description
Recommendations
References
Finding Custom Fields (rendered in order as stored in the finding and include the label)
Blank rows are avoided by only rendering sections with data.
Option 3 {%p set nn.detailed_findings_option = 3 %}
The defining characteristic of this option is the placement of all finding fields in table cells.
Sample Output
Title Bar
Dynamically generated reference numbers
Title
Severity
Automatic coloration
Additional Fields
Presented in the following order:
CVSS Score / Vector String (CVSS v3 if available, then CVSS v2)
Description
Recommendations
References
Finding Custom Fields (rendered in order as stored in the finding and include the label)
Blank rows are avoided by only rendering sections with data.
Option 4 {%p set nn.detailed_findings_option = 4 %}
This option allows the user to include all options within the Color Codes section of the pre-built template.
Sample Output
Option 5 {%p set nn.detailed_findings_option = 5 %}
This option allows the user to include all options within the Color Codes section of the pre-built template.
