You can filter detected vulnerabilities in your projects according to exploit maturity to see whether a specific vulnerability has an exploit in the wild and if so, how mature that exploit is.
In this way, you can prioritize and attend to the most important and risky vulnerabilities first.
The filter appears as follows:
The Exploit maturity filter is available from any detailed Projects page, from our Reports, and from our Vulnerabilities DB. Furthermore, an API is now available.
Proof of Concept vulnerability patches cannot be disabled and will appear in fix PRs where they are found.
Prerequisites: Projects imported prior to the implementation of his feature cannot be evaluated for exploit maturity. Reimport the project in order to scan for this data.
Steps:
-
Log in to Snyk.
-
Go to the detailed Projects page for any of your projects
-
Work with and remediate vulnerabilities from the Issues tab of the Reports area as well:
-
Filter reports by exploit maturity:
-
View exploit maturity data from the Issues list in Grouped mode:
-
View exploit maturity data from the Issues list in Ungrouped mode:
-