Skip to main content

Permissions Needed to Analyze and Suppress a Vulnerability for a Given Project

The following user roles have the necessary permissions to perform an exclusion analysis of any vulnerability associated with a given project and optionally to suppress the vulnerability for that project:

  • A System Administrator

    note

    A System Administrator can perform an exclusion analysis and suppress a vulnerability at the project level for any project.

  • The project’s Security Contact (also called Security Reviewer) or Developer Contact (also called Remediation Developer)

A user who does not have one of these roles can view any current analysis information for a vulnerability in the project, but cannot edit this information or suppress the vulnerability.