You are currently reviewing an older revision of this page.
Cloud customers can perform security-related activities against their Appian environments such as penetration testing and vulnerability scanning as well as software composition analysis scans on installers, containers and plugin jars. This article outlines assessment rules and accepted formats for submitting vulnerabilities to Appian.
The following applies to all submissions:
This section is applicable to penetration testing or vulnerability scans against Appian installations.
Fill out the Appian Vulnerability Submission Worksheet as per the instructions below:
This section is applicable to Software Composition Analysis scans against Appian installers, containers and plugin jars.
Fill out the Appian third-party vulnerability submission worksheet according to the instructions below:
Appian will review the findings (assuming all submission requirements have been met) and either accept or reject each one.
Appian Support will provide analyses and impact assessments of the report and individual findings through the support case.
This article applies to all versions of Appian Cloud
Last Reviewed: May 2023