AutoTriage
Cross-scanner deduplication and noise reduction that cuts finding volume with a measured reduction metric — and never suppresses malware or secrets findings.
AutoTriage
Multiple engines scanning the same code and infrastructure produce overlapping findings. AutoTriage deduplicates across scanners and reduces noise so your team sees a clean, prioritized list instead of a flood.
What it does
- Cross-scanner deduplication. The same underlying issue reported by more than one engine (for example SAST and SCA pointing at the same component) is collapsed into a single correlated finding.
- Noise reduction. Low-signal and redundant findings are down-ranked or merged.
- Reduction metric. AutoTriage reports a reduction percentage — how much finding volume it removed — so the noise reduction is measurable and auditable rather than opaque.
Hard guarantee
AutoTriage never suppresses malware or secrets findings. These categories are always surfaced in full, regardless of dedup or noise-reduction logic. Triage reduces noise; it does not hide the findings that matter most.
How it fits
AutoTriage operates over the unified findings model, so it can correlate across sast, dast, redteam, aisec, dspm, runtime, and sca findings. The result is a single deduplicated view that preserves every high-severity signal.
Configuration
AutoTriage is admin-toggleable via a feature flag, enforced server-side.
Related
- Unified Findings & Feature Flags — the model AutoTriage operates over.
- Malware Detection and Secrets Scanning — the finding categories AutoTriage never suppresses.
Package Firewall
Stop malicious and typosquatted dependencies at install time — inline allow / warn / block enforcement for typosquats, dependency confusion, and known-malicious packages.
Unified Findings & Feature Flags
Every security engine reports into one unified findings model, discriminated by type, with each engine independently admin-toggleable via server-enforced feature flags.