Dashboard
The ScanRook dashboard is the web interface for the ScanRook platform. Upload artifacts, start scans, track real-time progress, and review findings — all from your browser.
Uploading Files
Get artifacts into the scanner.
Drag and drop a file onto the upload card on the dashboard, or click to select a file. Supported formats include container tars, ISO images, SBOMs, ZIP archives (APK, AAB, JAR, WAR, wheel, NuGet), DMG disk images, and standalone binaries.
Files are uploaded directly to S3 via a presigned URL — they never pass through the application server. This allows uploads of any size over any connection speed with a one-hour timeout for large files.
Starting a Scan
Choose your scan mode.
Select Light or Deep scan mode before uploading. Light mode runs the core vulnerability enrichment pipeline (OSV + NVD + EPSS + KEV). Deep mode adds YARA rule matching when rules are configured.
After upload completes, a scan job is automatically created and queued. The worker picks it up within seconds.
Navigating Results
Where to find what.
- Jobs table — The main dashboard page shows all scan jobs with status, progress bar, and expandable workflow timeline.
- Findings page — Click "Findings" on any completed job to see the filterable findings table with severity, CVSS, EPSS, and KEV data.
- Files page — Click "Files" to browse the file tree of the scanned artifact.
- Report JSON — Download the full structured report for programmatic analysis.
Learn More
Dive deeper into specific topics.