Skip to main content

Use session metadata filters

Use session metadata to filter vulnerabilities and route information for a specific branch, build, committer, or repository. When you add the necessary configuration settings to your agent configuration file, the agent reports this information along with the rest of your standard vulnerability data to Contrast.

Note

This feature is currently not available to on-premises customers.

A session is the combination of metadata values that you set in the agent configuration file. Depending on the defined values, each agent run could be part of a single session or every agent run could have its own session. If you are integrating Contrast into a CI/CD pipeline, ensure that you send at least one session metadata value that is unique each time you deploy a new version of the application. For example, configure the agent to send the Commit Hash or Build Number metadata because these values are likely to change for each application deployment.

If you don't select a specific session metadata filter, the Session column in the Vulnerability list displays up to 10 of the values specified in the agent configuration file. This limit ensures that the Contrast web interface can display vulnerability and sink group data correctly.

Steps

  1. Select Applications in the header.

  2. Select an application in the list.

  3. Select either the Vulnerabilities tab or the Route coverage tab.

  4. Select the Session metadata icon (icon-versions.svg) at the top of the list.

    The session metadata filters that you apply affect the Vulnerabilities and Route coverage lists.

  5. Select the Session metadata icon (icon-versions.svg) at the top of the list.

    In the Vulnerabilities list, the Session column and the View by filter are hidden and the details of the most recent session display above the session metadata icon.

    Image shows applying a session metadata filter.

  6. In the Vulnerabilities list, the Session column and the View by filter are hidden and the details of the most recent session display above the session metadata icon.

    1. In System property, select one of the displayed properties.

    2. In Value, start typing to find values for the selected system property.

    SessionMetaCustom.png

  7. To clear a session metadata filter, use one of these methods:

    • Select the Session metadata icon ( icon-versions.svg). and select Clear filter.

      Image shows the Clear filter button after you selected a session metadata filter.

    • Select Clear next to the displayed metadata above the Session metadata icon ( icon-versions.svg).

      Image shows the Clear option for session metadata.

    In the Vulnerabilities list, the Session column displays after you clear the session metadata filter.

In this section: