Review pull request annotations in GitHub and Azure DevOps

Resolve security issues in GitHub

To resolve security issues in GitHub:

1. Navigate through the page and locate an affected file with an annotation.

2. Follow the remediation steps in the annotation. If you choose not to remediate the annotation, select Dismiss alert.

3. Select a reason to dismiss:

   • Won't fix - The alert is noted but won't be fixed.
   • False positive - The alert isn't valid.
   • Used in tests - The alert isn't in the production code.

Resolve security issues in Azure DevOps

Once you've configured the scanner, you're able to view all issues that were detected.

To resolve security issues in Azure DevOps:

1. Sign in to the Azure DevOps.

2. Navigate to Pull requests.

   

3. On the Overview, or files page, locate an affected line with an annotation.

4. Follow the remediation steps in the annotation.

5. Select Active to change the status of the annotation and access the dropdown menu.

6. Select an action to take:

   • Active - The default status for new annotations.
   • Pending - The finding is being worked on.
   • Resolved - The finding has been addressed.
   • Won't fix - The finding is noted but won't be fixed.
   • Closed - The discussion in this annotation is closed.

DevOps security in Defender for Cloud reactivates an annotation if the security issue isn't fixed in a new iteration.

Learn more

Learn more about DevOps security in Defender for Cloud.

Learn how to Discover misconfigurations in Infrastructure as Code.

Next steps

Now learn more about DevOps security in Defender for Cloud.