Monitoring Exclusions
The Exclusions page provides centralized visibility into all exclusions defined across the organization. From this page, you can review which issues are excluded, where the exclusions apply, who created them, and whether they are time-bound.
It is commonly used to review all active exclusions before a compliance or security audit, identify long-lived exclusions that may require re-evaluation, track temporary (snoozed) exclusions and their expiration dates, and understand why certain issues do not appear in active findings.
The Exclusions page allows you to understand why an issue does not appear in active findings, who excluded it and when, whether the exclusion is permanent or temporary, and what matching logic is used.
The Exclusions page shows both fully-excluded issues and partial exclusions (where only some of an issue's aggregations were excluded).
This page is read-only and is intended for audit, review, and governance purposes. You can define exclusions in the Active Issues page.
Exclusions table
The table lists all exclusions that match the current filters.
Type
Indicates the category of the excluded issue, such as code, secret, or cloud.
Issue
The name of the excluded issue.
App Name
The application or cloud account where the exclusion applies.
Match
The logic used to apply the exclusion, such as file paths, resource identifiers, rule IDs, or code locations.
Count
Number of occurrences affected by the exclusion.
Excluded By
The user who created the exclusion.
Comment
Indicates whether a comment was added when the exclusion was created.
Snooze Till
Shows the expiration date for temporary exclusions.
Applied Date
The date the exclusion was applied.
Filters and search
You can narrow down the list of exclusions using the filters panel or the search bar.
App Name
Filters exclusions by application or cloud account.
Exclusion Type
Filters by the type of excluded issue.
Issue Name
Filters by issue name.
Created By
Filters exclusions by the user who created them.
Policy Name
Filters exclusions originating from a specific policy.
The search bar supports free-text search by issue name or application name.
Managing exclusions
Although exclusions are created elsewhere in the platform, they can be managed from the Exclusions page.
Each exclusion row includes an actions menu. Available actions depend on the exclusion type, its current state, and your permissions.
Remove Exclusion
Deletes the exclusion. The issue is evaluated again in future scans.
Update Exclusion Expiry Date
Updates the expiration date of a temporary exclusion.
Remove Snooze
Removes the time limit from a snoozed exclusion.
Make App Relevant: Always
Marks the application as always relevant for evaluation, when applicable.
Make App Relevant: OX Dynamic
Restores dynamic relevance evaluation for the application.
Enable Policy
Re-enables the policy associated with the exclusion, when relevant.
Actions that are not applicable to a specific exclusion appear disabled.
Reviewing excluded issues in the Removed Issues page
The Exclusions page lists only the metadata for each exclusion. To see the excluded issue details, open the Removed Issues page and filter by Removed Reason.
Last updated