Skip to main content

Working with Reports

Once a security review engagement is completed, the Cantina team generates a comprehensive report that outlines all valid findings, their severity rankings, resolutions, and relevant comments. These reports serve as a key deliverable, helping organizations track vulnerabilities and understand the outcomes of the security review.

Report Generation Process

The process of generating a comprehensive security report is as follows:

1. Compilation of Findings

The Cantina team gathers all findings from the engagement, including comments, resolution statuses, severity rankings, and other relevant data. This process includes reviewing the findings submitted by the Security Researchers and ensuring all information is captured accurately.

2. Draft Report

After compiling all relevant information, the Cantina team drafts the initial report. This report will include:
  • A list of all findings with their respective severity rankings (Low, Medium, High)
  • Resolution status for each finding (Resolved, Pending, Not Resolved)
  • Comments and context from both Security Researchers and your team
  • Any other relevant details that can help the organization understand each finding
The draft report is then shared with your team for review.

3. Team Review

Your team can review the draft report and provide feedback. This is an opportunity to clarify any findings, request further context, or adjust severity rankings and resolution statuses. The Cantina team will work with you to incorporate any changes or adjustments as needed.

4. Final Report

After incorporating feedback from your team, the Cantina team finalizes the report. The final version is delivered to your team, and it serves as the official document for the security review. The final report is a comprehensive record of the vulnerabilities found and the actions taken to address them.

Accessing Reports

Once the report is finalized, you can access it anytime from the Reports section of your Cantina dashboard. Here, you will find a comprehensive list of past reports associated with completed engagements.

How to Use:

  1. View Report: Navigate to the Reports section and select the relevant engagement report.
  2. Download or Share Report: Once opened, you can download the report or share it with your team or stakeholders.