Multi-Project-Scope: Total risk score resolver

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Overview

The group-level risk score is based on the vulnerability risk scores in that group. Only active vulnerabilities are taken into account. The risk is calculated in real time when requested.

Vulnerability State Classification

• Active states: detected, confirmed
• Inactive states: dismissed, resolved

Risk Score Calculation

Group Risk Score = (ΣVulnerability Scores + (ΣVulnerability_age_in_month) x 0x005) × Diminishing Factor