Findings
Each finding includes:- Severity — Critical, High, Medium, Low, or Info
- Title — what the vulnerability is
- Description — detailed explanation with evidence
- Location — file path, line number, or URL endpoint
- Remediation — how to fix it
- CVSS score — industry-standard severity rating
Severity levels
| Level | CVSS | Action |
|---|---|---|
| Critical | 9.0–10.0 | Fix immediately — actively exploitable |
| High | 7.0–8.9 | Fix within days |
| Medium | 4.0–6.9 | Fix within current sprint |
| Low | 0.1–3.9 | Fix when convenient |
| Info | 0.0 | Informational, review at your discretion |
Reports
LaunchSafe generates reports in three formats:- PDF — for sharing with stakeholders, auditors, or compliance teams
- JSON — structured results for your own tools and automation
- SARIF — for GitHub code scanning and other security tooling
Auto-fix PRs
For supported vulnerability types, LaunchSafe can open pull requests with the fix applied. These PRs include:- The code change to remediate the vulnerability
- A description of what was found and why the fix works
- A link back to the finding in LaunchSafe
Analytics
The Analytics dashboard shows:- Vulnerability trends over time
- Severity distribution
- Most common vulnerability types
- Fix rate and mean time to remediate
Next steps
Findings
Deep dive into finding types and triage.
Reports
Learn about report formats and sharing.