CodeWallDocs
Platform

Retests

Verify that remediated vulnerabilities are actually fixed.

Retests let you validate that a finding has been properly remediated by re-running the specific exploit against the target.

How retests work

  1. Open a finding in the findings dashboard
  2. Click Retest
  3. CodeWall launches a focused test that specifically targets the vulnerability described in the finding
  4. The retest produces one of four outcomes:
OutcomeMeaning
RemediatedThe vulnerability is no longer exploitable
Still VulnerableThe vulnerability still exists
InconclusiveThe agent couldn't determine the status (e.g., target unreachable)
RunningThe retest is still in progress

Viewing retests

Navigate to Pentests > Retests to see all retest results:

  • Summary cards showing counts by outcome
  • Filter by project and outcome
  • Sort by outcome, finding, target, project, start time, or duration
  • Each row shows: finding name, target, project, start time, and duration

Best practices

  • Retest after deploying a fix, not before — avoid unnecessary runs
  • If a retest comes back Still Vulnerable, review the remediation and verify it was deployed
  • Use retests as evidence of remediation for compliance and audit purposes
  • Retests of previously Remediated findings confirm fixes haven't regressed

Reports

Generate formatted reports for stakeholders, compliance, and remediation tracking.

Compliance

Map findings to compliance frameworks including OWASP, PCI DSS, SOC 2, NIST, and ISO 27001.

On this page

How retests workViewing retestsBest practices