Compliance Vulnerability Reports
Security > Compliance > Vulnerability Reports is aimed at compliance and audit use cases: CVE-style findings on container images (packages and dependencies), with severity, scores, affected component, installed and fixed versions, and links to external advisory pages where the product provides them.
On this page you can expect the same shape of data as in other vulnerability report screens β CVE ID, severity, resource (package), installed version, fixed version, score, title β with navigation and filters tuned for evidence collection and remediation tracking (which workload, which image, SLA by severity).
This is how menu differs from others:
| Location | Scope / use |
|---|---|
| Container Vulnerability Reports | Namespace β images in use in a namespace. |
| Cluster Vulnerability Reports | Cluster β cluster-scoped image or SBOM-style reports. |
| Compliance > Vulnerability Reports (this page) | Same CVE-oriented findings, presented under Compliance for policy and reporting workflows. |
Exact grouping depends on your product configuration; the types of rows (CVEs, severities, remediation) stay consistent across these views.