Findings & Alerts
The Findings section lists all secrets, credentials, and vulnerabilities BleedWatch has detected in your organization's public attack surface.
Finding Severity Levels
| Severity | Color | Description |
|---|---|---|
| Critical | Red | Exposed credentials, active tokens, live secrets |
| High | Orange | High-confidence secret exposure, public key material |
| Medium | Yellow | Moderate-confidence exposure, outdated credentials |
| Low | Blue | Informational, unlikely to be exploitable |
Finding Lifecycle
Each finding moves through these states:
- Open — Active issue requiring attention
- Acknowledged — Seen by your team, under investigation
- False Positive — Confirmed not a real secret
- Won't Fix — Accepted risk, will not be remediated
- Resolved — Secret has been rotated or removed
Immutable Findings
Findings are never deleted. Once created, only the status changes. This preserves your audit trail for NIS2, PCI-DSS, and ISO 27001 compliance.
Alerts
Configure alerts to be notified when new findings are detected:
- Email — Immediate or daily digest
- Slack — Real-time notifications to a channel
- Webhook — POST to your own endpoint
Go to Settings → Alerts to configure notification channels.
Filtering Findings
Use the filter bar to narrow findings by:
- Source (NPM, Docker, GitHub, PyPI, Dark Web)
- Severity
- Status
- Date range
- Asset / package name
Exporting Reports
Go to Reports to generate a PDF or CSV export of all findings for a given time period. Reports are useful for compliance audits and executive briefings.