Vulnerability Remediation SLA

Introduced Remediation SLA for vulnerabilities, giving teams managerial control over remediation deadlines.

• Real-time deadline states based on severity and the asset's business impact: on-time, near-due (75% of time elapsed), breached, and resolved.
• Dashboard & filters: SLA states are visible in the dashboard and issue filters, so teams can prioritize what is about to breach or already breached.
• Proactive notifications (email/platform) alert the asset's responsible teams as deadlines approach or are exceeded.
• Purely managerial and monitoring-focused, it does not block deploys/builds/merges, does not change vulnerability status automatically, and does not trigger the Security Gate (which remains the independent enforcement mechanism).

Learn more in the Remediation SLA documentation. Watch: Como priorizar vulnerabilidades baseado em riscos reais.