Change Intelligence

The Change Intelligence page helps you understand how issues evolve between scans by showing what changed, when it changed, and how those changes affect your security posture. It highlights new issues, resolved issues, removed issues, and severity changes so you can track risk trends over time instead of reviewing individual findings in isolation.

By combining trend analysis with detailed scan comparisons, Change Intelligence allows you to identify regressions, validate remediation efforts, and understand the impact of coverage or detection changes across applications and time periods.

Change Intelligence data is also available through the API for automation, reporting, and integration with external systems.

Filters

Filters define the scope of data shown across the entire Change Intelligence view.

The selected filters are applied together and affect the trend graph, Latest Scan Changes, and Historical Changes.

Updating any filter immediately refreshes the data to reflect the selected scan range, application scope, and severity levels.

Issues Status Trend Over Time

This section provides a graph that shows the number of issues over time by type of change. You can use the date selector to view data for different periods, such as the last week or month.

Latest Scan Changes

This section lists all changes detected between the latest scan and the selected previous scan. It allows you to compare results and identify what has changed since the last run.

Counters at the top of the list summarize totals for each category.

Each record in the list includes key information about the issue and its change type. You can expand an item to see detailed context.

The following examples illustrate common types of issue changes displayed in this view:

Export

You can export change data directly from the Change Intelligence page. Export options include exporting all detected groupings or exporting only the groupings that match the currently applied filters.

AI Summary

AI Summary provides an automated overview of the issues currently displayed on the page. It summarizes the findings based on the current view, helping you understand what stands out without reviewing every record manually.

This is useful when you have a large number of issues or frequent scan updates, and you need a quick way to understand the main changes and risks.

AI Summary is optional and disabled by default. This allows organizations to control whether issue data is sent to an AI service, based on internal security and compliance requirements.

When AI Summary is enabled, no issue details, image names, application names, or user data are sent to the AI model. Only library names may be shared for processing in order to generate the summary. Some organizations keep this disabled due to legal or privacy requirements.

Organizations can configure AI Summary to work with their own OpenAI token. In this case, data is sent using the customer-managed token.

To Enable AI Summary:

1. Go to Settings > AI Settings.

2. Enable AI Summary.

Historical Changes

The Historical Changes view shows issue updates from previous scans within the selected date range. It helps identify when issues were introduced, when their severity changed, and how risks evolved over time. Each entry reflects the state of the issue at that scan point, including severity changes, resolution, or removal.

Historical results reflect the state of issues at the time of each scan. As coverage, scope, or detection logic changes, issues may later appear as resolved or excluded. For this reason, issue links are available only for the latest scan.

The following examples illustrate how to interpret common entries in the Historical Changes view.