Executive Reports

Download PDF security reports from CodeStax for sharing with stakeholders, compliance audits, and management reviews.

Report Types

Repository Report

A comprehensive security overview for a single repository, including:

Overall risk score and grade
Finding counts by severity (Critical, High, Medium, Low)
Trend charts showing security posture over time
Top vulnerabilities with remediation guidance
Dependency health summary
License compliance status

Scan Report

A detailed report for a specific scan, including:

Scan metadata (date, type, branch, duration)
All findings with severity, description, file location, and remediation steps
CVSS and EPSS scores for SCA findings
AI-generated fix suggestions where available

How to Download

From the Repository Detail Page

Navigate to any repository’s detail page.
Click the Download Report button in the top-right corner.
The report generates as a PDF covering the latest scan data and historical trends.

From the Scan Detail Page

Open any completed scan from the scan history.
Click Export PDF in the scan header.
The report includes all findings from that specific scan.

Report Contents

Reports are branded with your organization name and generated with the current date. Each report includes:

Executive summary — A one-page overview with risk score, key metrics, and top action items.
Findings detail — Full listing of all findings grouped by scanner type (SAST, SCA, Secrets, IaC).
Trends — Charts showing how finding counts and risk scores have changed over recent scans.
Recommendations — Prioritized list of actions to improve security posture.

Permissions

All organization members can download reports for repositories they have access to. Reports respect the same access controls as the dashboard.

Compliance Use

Reports are formatted for use in SOC 2, ISO 27001, and other compliance frameworks. The findings detail section maps to CWE identifiers and CVE references where applicable.