Understanding scan findings and severity levels

CodeShield categorises findings into four severity levels. SEVERITY LEVELS - Critical: Immediate action required. Exploitable vulnerabilities or exposed secrets. - High: Significant risk. Should be addressed before the next release. - Medium: Moderate risk. Plan to fix within the next sprint. - Low: Minor issues, best practices, or informational findings. READING A FINDING Each finding includes: - File path and line number - Vulnerability type and CVE reference (if applicable) - Explanation of the risk - Recommended fix - AI-suggested fix (for supported finding types) DISMISSING A FINDING If a finding is a false positive, click "Dismiss" and select a reason. Dismissed findings are hidden from the active list but logged for audit purposes. FIXING A FINDING Click "Auto-fix" on supported findings to let EchoForge open a pull request with the suggested fix. Review the PR before merging.