Skip to content

[FEATURE] Add risk scoring model with explainable finding prioritization #252

Open
Open
[FEATURE] Add risk scoring model with explainable finding prioritization#252
Assignees
Shikhar-404exe
Labels
area:backendBackend API, database, or service workarea:frontendFrontend React/UI worklevel:advanced55 pts difficulty label for advanced contributor PRspriority:mediumImportant issue with normal urgencytype:featureFeature work category bonus labeltype:securitySecurity work category bonus label
@utksh1

Description

@utksh1
utksh1
opened on May 22, 2026

Problem

SecuScan needs a production-grade improvement in this area: Finding prioritization..

Scope

Calculate risk score from severity, exploitability, asset exposure, recency, and confidence, and show explanation in the UI.

Acceptance Criteria

  • The implementation is focused and does not introduce unrelated UI, docs, lockfile, or formatting churn.
  • Security-sensitive behavior has explicit negative tests where applicable.
  • Existing tests continue to pass, and new tests cover the main success and failure paths.
  • Documentation or configuration examples are updated when operator behavior changes.

Verification

Tests should cover scoring determinism, edge cases, and UI display of score factors.

Difficulty

Hard, useful issue intended for experienced contributors.

Metadata

Metadata

Assignees

Labels

area:backendBackend API, database, or service workarea:frontendFrontend React/UI worklevel:advanced55 pts difficulty label for advanced contributor PRspriority:mediumImportant issue with normal urgencytype:featureFeature work category bonus labeltype:securitySecurity work category bonus label

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions