Change scan settings

The scan settings affect the type of scan that Contrast Serverless performs on all functions.

You can change these settings for a manual scan of selected functions.

Before you begin

Determine if you want to use static scans, dynamic scans, or both.
An Admin role is required.

Steps

Select Serverless in the header.
Select the Settings tab.
Under Scan, select the types of scans that you want to use:
- Scan for Least Privilege violations and CVEs: Use this setting for a static scan.
  This scan type looks at relevant static code and configuration assessments to discover new vulnerabilities.
  During a static scan, Contrast adds a Lambda function to your account. Once the scan completes, the function exits.
- Scan for custom code vulnerabilities: Use this setting for a dynamic scan.
  This scan type looks at dynamic assessments, based on the specific update introduced to the tested environment.
  During a dynamic scan, Contrast tries to send malicious input to the code and then exercises the code to discover vulnerabilities.
Important
Serverless scans make no changes to your function code.
Select Save.

In this section:

Was this helpful?

Would you like to provide feedback? Just click here to suggest edits.