A scan profile is a configuration that defines the scan parameters, and toolchains for each build setup required for a scan. Use scan profiles to ensure accurate scans and reduce failures caused by missing or mismatched dependencies. Associate a project with an appropriate scan profile to ensure that each scan uses the correct configuration. You can also configure automated scan parameters in your scan profile to customize scan behavior in cloud environments. Build tools in a scan profile help recreate the project’s build environment, ensuring reliable dependency resolution and accurate scans. See build tools to configure them and view the toolchains supported by Endor Labs. Use one of the following methods to create a scan profile:Documentation Index
Fetch the complete documentation index at: https://docs.endorlabs.com/llms.txt
Use this file to discover all available pages before exploring further.
- Configure scan profile through the Endor Labs user interface
- Configure scan profile through the Endor Labs API
- Configure scan profile through
scanprofile.yamlfile
Scan workflow
A scan workflow is a predefined sequence of scan steps that runs within a project. Each step applies a specific scan profile, enabling you to target different parts of your codebase. Analytics are generated once the entire workflow completes. A project can have only one scan workflow at a time. Use scan workflows to combine multiple scan profiles and apply them selectively—for example, when your project uses different languages or build tools across multiple components. Use the following method to create a scan workflow:- Configure scan workflow through the Endor Labs API
- Configure scan workflow through the Endor Labs user interface
You require Admin role permissions to create and manage scan profiles and scan workflows. See authorization roles to learn about the different roles Endor Labs offers.