Targets, variants, and baselines in STO
This topic discusses the following STO topics:
- Targets
- Variants
- Baselines
- Where was an issue detected: in the variant, in the baseline, or both?
- Every target needs a baseline
Targets
Every scan step has a specific target, which is a user-defined label for the code repository, container, application, or configuration to scan. You define the test target when you configure the scan step. It is good practice to create descriptive, specific labels for your targets.
You can view all your targets in one page: go to Security Tests (left menu) and then Test Targets.
Variants
Each scan operation has a specified variant that specifies the branch, tag, or version to scan.