Performing a Search
You can fine-tune the search query by using a combination of multiple search terms/item types in conjunction with the supported search syntax. Such queries can be used to find specific organizations, applications, components, and policies by names, IDs, etc. Advanced Search results do not return policy violations. Use the Violations View on the Dashboard to view policy violations.
To script an advanced searches, use Advanced Search REST API.
Steps to use Advanced Search:
Go to Advanced Search in the main left navigation bar.
Click on the Add Search Terms button to start building your query.
Click on the required search item types and enter the corresponding search value to complete the search criteria.
Hit Search to view the results
Advanced Search for components with vulnerabilities
Selecting any search item type from the Component category will give an option to retrieve:
All components that match the search criteria or
Only components that match the search criteria and have security vulnerabilities
Search for Components in Applications from a Specific Organization
You can search for components or vulnerabilities in applications that belong to a specific organization by including the organizationName or organizationID in the search query.
The search retrieves components and vulnerabilities from applications directly managed by the organization specified in the search query.
Organization hierarchy is not supported by the Advanced Search. Including an organization in the search query will not retrieve results for its child organizations.
Refer table below for more information on search item types, field names and corresponding examples to build your search criteria.
Item Type | Field Name | Example |
---|---|---|
|
|
|
|
| |
|
|
|
|
| |
|
| |
|
|
|
|
| |
|
| |
|
| |
|
|
|
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
|
| |
|
| |
|
|
|
|
| |
|
| |
|
| |
|
|
|
|
| |
|
| |
|
| |
|
| |
|
| |
N/A |
|
|
Search Examples
Single field search
VulnerabilityId is used when no fieldName is specified. Results exactly matching the value.
fieldName:value
vulnerabilityId:value
Searching for multiple phrases separated by whitespace
Use quotes when the search requires you include a space.
fieldName:"value1 value2"
Boolean operators for multiple fields search
Boolean operators are case-sensitive. When no boolean operator is specified the OR
operator is used.
OR
or ||
must satisfy one condition or the other condition
fieldName1:value1 OR fieldName2:value2 fieldName1:value1 || fieldName2:value2
AND
or &&
must satisfy both conditions
fieldName1:value1 AND fieldName2:value2 fieldName1:value1 && fieldName2:value2
NOT
or !
or -
must not be the condition
fieldName1:value1 NOT fieldName2:value2 fieldName1:value1 ! fieldName2:value2 fieldName1:value1 - fieldName2:value2
Using boosting operator
A boosting operator is used to specify the relevancy order for the search results. You can boost a term within a query to increase its relevance by changing the order in which it appears in the results.
fieldName1:value1^x OR fieldName2:value2
Note that x
, must be positive, may be fractional, and is by default 1.
Search using wildcards * and ?
These results have a value starting with 'v' following with zero or many characters
fieldName:v*
These results have a value starting with 'v' following with any single character
fieldName:v?
Search using regular expressions (regex)
These result have a value matching the regular expression.
fieldName:/regularExpression/
Search using fuzzy expressions
These results have some value within a number of edits of search value. The maximum number of edits range between zero and 2
fieldName:value~x
When no maximum (x) is specified, then the default number of 2 is used
fieldName:value~2
Search using proximity expressions
These results have each value within x words of the other. Effective with fields consisting of multiple words, like description fields.
fieldName:"value1 value2"~x
Search based on range
These results include both values
fieldName:[value1 TO value2]
These results are exclusive of the values
fieldName:{value1 TO value2}
Search by grouping values
Grouping values are effective with fields consisting of multiple words, like description fields.
fieldName:((value1 OR value2) AND value3)
(fieldName1:value1 OR (fieldName2:value2 AND fieldName3:value3))
Escape characters while building the search query
The list of special characters; can be escaped using a backslash \
character.
+ - && || ! ( ) { } [ ] ^ " ~ * ? : \ /