Xray Terminology and Concepts in Projects

JFrog Platform Administration Documentation

ft:sourceType
Paligo

The following Xray terminology and concepts of Xray are used in Projects.

Global Policy

A Policy that can be used in a Global Watch or a Project Watch when you have a set of rules that apply to more that one project or on all projects in your organization. A Platform Admin, a Security Manager, and a users with Manage Policies permissions can create Global Policies.Introduction to Users and Groups

Global Watch

A Watch that can be applied on resources in any project or unassigned resources that are not specific to a project. A Platform Admin, a Security Manager, and a user with Manage Watches permissions can create Global Watches. Starting from Xray 3.27.2, you can apply a Global Watch on a Project resource. For more information, see Global WatchesIntroduction to Users and GroupsConfiguring Xray Watches

Create a Global Watch and Global Policy in the context of All:

image2021-3-17_19-23-35.png

Global Watch Violations

Violations created by a Global Watch are not project specific, and will appear in the list of violations where the scanned resource resides, in any project. A user cannot ignore a violation from a Global Watch, only a Security Manager with the Ignore Global Watch Violations privilege can create a Global Ignore Rule.

Note

Global Watches can only contain Global Policies.

Global Watch Report

A report that can be defined on all resources regardless of a project. A Platform Admin, a Security Manager, and a user with Manage Reports permissions can create Global Reports. Starting from Xray 3.27.2, you can create a Global Report on the Project scope. For more information, see Global Xray Reports.Introduction to Users and GroupsXray Reports

Project Policy

A Policy that is created and used in the scope of a specific project. A Platform Admin, a Project Admin, a Security Manager, and a user with Manage Policies permissions can create project level Policies.Introduction to Users and Groups

Project Watch

A Watch that is created and used in the scope of a specific project. A Platform Admin, a Project Admin, a Security Manager, and a user with Manage Watches permissions can create project level Watches.Introduction to Users and Groups

Create a Project Policy and Project Watch in the context of the project you are in:

image2021-3-17_19-27-26.png

Project Watch Violations

Violations created by a Project Watch are applicable to that specific project and will appear in the list of violations for a user within that project. Other users who are not members of the project will not see these violations. A user with Manage Watches permissions, a Platform Admin, a Project Admin, and a Security Manager can ignore a violation from a Project Watch.Introduction to Users and Groups

Project Report

A report that can be defined on resources in a specific project. A Platform Admin, a Project Admin, a Security Manager, and a user with Manage Reports permissions can create project-level Reports.Users & Groups