Enrichment Settings Help

Enrichment Back to Settings
Geo Lookup

Resolves visitor IP data using local datasets for map and geography-focused views.

CVE Scan

Extracts dependency versions from telemetry and checks known vulnerabilities daily.

Repo Backfill

Uses configured repositories and lockfiles to improve dependency visibility and scan coverage.

Geo Enrichment
Uses local IP databases for country resolution in web traffic views. No external API keys required.
CVE Enrichment
Extracts dependency and SDK versions from telemetry, then checks known vulnerabilities via OSV.dev on scheduled scans.
Recommended Setup Sequence
  1. Enable geo lookup and confirm web traffic country rendering.
  2. Enable CVE scan and verify last scan timestamp appears.
  3. Configure repositories and token for dependency backfill.
  4. Tune max releases per scan to balance coverage and runtime.
  5. Review findings and refine source app repository mappings.
Troubleshooting
  • If countries do not resolve, confirm geo enrichment is enabled and inbound IP fields are present.
  • If CVE findings stay empty, verify telemetry includes dependency or SDK version attributes.
  • If backfill fails, verify repository URL format and token scope/expiry.
  • If scans run slowly, reduce max releases checked per run.
For repository-backed lockfile enrichment, configure repository URLs and a GitHub token with contents:read.