we are new to working with ASM and have encountered an issue related to a vulnerability in our application that was detected by EcoScanner. After collaborating with Atlassian support team, we created and deployed a patch for this vulnerability. We marked the ticket as “Pending Scanner Verification” right after it. However, it has remained in this status for several days now.
We’ve noticed that the Scan Timestamp is dated 28.10. (patch was deployed before this date), but the status has not changed. We have some questions:
- How can we determine whether the patch has resolved the problem, and what is the current status of the verification process?
- Does the scanner manage this automatically?
- Is it possible that the scanner is waiting for the Remediation Due Date to automatically verify the issue and close the ticket as “Patched” if the vulnerability is indeed fixed?
Thank you for your assistance.