SLA Rules

Users can set SLA in days to determine the acceptable time frame to fix vulnerabilities for each severity category on Kondukto. Once the SLA is set, Kondukto reports overdue vulnerabilities that exceed the SLA level specified for their severity category on the dashboards. When an SLA is edited, it impacts all vulnerabilities discovered before and after the editing.

Labels can be associated with SLA levels to determine different SLA levels for applications with different risk profiles.

The default SLA rule is used as a fallback option in case multiple labels with different SLA levels are assigned to a project. If multiple labels with SLA levels are assigned to the same project, then the SLA rule selected as default is used as the applicable SLA level in the project.