CodeWallDocs
Findings

Understanding Findings

Learn how to read and interpret CodeWall vulnerability findings.

Each finding represents a verified vulnerability that CodeWall's AI agent has discovered and validated with a proof-of-concept exploit.

Anatomy of a finding

Title and description

A concise summary of the vulnerability, including what it is and where it was found.

Severity

A rating from Critical to Informational based on potential impact and exploitability. See Severity Levels for details.

Attack chain

The full sequence of steps the agent took to discover and exploit the vulnerability. This shows:

  • How the vulnerability was found during reconnaissance
  • What analysis determined it was exploitable
  • The exact exploit steps with request/response details

Proof of concept

Reproducible evidence of the exploit. This typically includes:

  • HTTP requests and responses
  • Screenshots where applicable
  • Commands or payloads used
  • The impact demonstrated (data accessed, actions performed, etc.)

Remediation

Actionable guidance on how to fix the vulnerability. See Remediation for more on working with remediation guidance.

AI chat

Each finding has a built-in AI chat interface. Use it to ask questions about the vulnerability, understand the attack chain in more detail, or get additional remediation guidance tailored to your specific tech stack.

Finding statuses

  • Open — the vulnerability has been identified and not yet addressed
  • In Progress — remediation work is underway
  • Resolved — the fix has been applied
  • Accepted Risk — the team has acknowledged and accepted the risk
  • False Positive — marked as not a real vulnerability

Findings

Understand vulnerability findings, severity levels, and remediation guidance.

Severity Levels

How CodeWall rates the severity of discovered vulnerabilities.

On this page

Anatomy of a findingTitle and descriptionSeverityAttack chainProof of conceptRemediationAI chatFinding statuses