A workspace is an area within a project to review, update, and manage unverified findings.

After importing data sources to Resolve, you can use the workspace to display findings from selected sources. You can add or remove findings and modify finding properties, such as the state, without affecting the data contained in the original source. You can also manually create findings alongside those imported from scanners and testing tools.

By default, new findings in the Workbench module are not shared with the Track module. After findings have been reviewed, they can be marked for publishing to the Track module for remediation workflow.

Workspace use case examples

You can create or clone as many workspaces as you need for a project. This can be useful for large or complex projects, especially if there are several team members reviewing findings for the same project. The following are some example use cases for creating multiple workspaces.
  • If a workspace contains an incredibly large number of findings, you can split the findings into multiple workspaces to make it more manageable. You might divide the workspaces by asset or severity.
  • If findings in a workspace will be reviewed by different penetration testers, each tester might want their own workspace rather than sharing one.
  • For projects such as code reviews, you can create a workspace for static code analysis and a second for dynamic code analysis. After findings have been reviewed, the workspaces can be merged into a third workspace for publishing to the Track module.
  • You can clone a workspace any time you need to make a change but want to preserve the current state of the data set, such as before identifying and removing duplicates.

Workspace considerations

  • If a finding appears in multiple workspaces, any changes made to the finding, including modifying the state, are propagated to other workspaces the finding appears in. This applies to instance modifications as well.
  • A workspace can contain up to 500,000 instances. If you have more than 500,000 instances that need review, split the data set into multiple workspaces.

Workspace areas

Resolve workspaces contain two areas — the findings tree and the working area.

Figure 1. A workspace
CalloutItemDescription
1Finding treeDisplays findings, assets, and instances based on the vulnerability data added to the workspace.

Use the finding tree to navigate vulnerabilities based on unique findings.

2Working areaDisplays details about the selected node.

Use this area to review, modify, and add verification items for selected nodes. You can also pivot between nodes of the same group.

Workspace statistics

You can use the Show Overview button above the working area to display statistics and graphs of workspace data. This data includes the number of duplicates, manual instances, and instances by each state.