> For the complete documentation index, see [llms.txt](https://docs.softwaresecured.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.softwaresecured.com/findings/viewing-and-acting-on-your-pentest-results.md). # Viewing and acting on your pentest results After each penetration test, your results are uploaded into space.vars.product\_name. You will receive a notification by email (and Slack, if you have the integration) when results are available. *** ### **View your results** 1. In the projects bar, select the project that you would like to view. 2. Open the **Vulnerabilities** tab. 3. In the table view, you can view the status, severity, SLA status, date identified, last updated, affected compliance frameworks, and any labels. If you have any project management integrations enabled they will also be visible.

The **Vulnerabilities** tab includes a table of all vulnerabilities in the project.

3. Select any vulnerability in the table to review its details, including the description, impact, mitigation tactics, replication steps, evidence, and comments. *** ### Remediation actions After viewing your results, there are actions your team can take to tackle remediation. In the main menu of your project’s vulnerability dashboard, you can take the following actions: * Book a retest for selected issues (see [Retesting your vulnerabilities](/after-testing/retesting-your-vulnerabilities.md)). * Copy vulnerability information to your clipboard. * Export vulnerability data as a CSV file (see [Viewing and downloading reports and executive summaries](/reports-and-certificates/viewing-and-downloading-reports-and-executive-summaries.md)). * Add labels. * Labels make it easier to categorize and sort vulnerabilities. Users can add up to 50 labels per project, including (but not limited to) release versions, assigned teams, or internal priority. * Accept risk for a vulnerability. * Org Admins and Project Admins can accept risk by selecting the vulnerability and clicking **Accept Risk**. * When submitting a request to accept the risk of a vulnerability, you must provide a note to explain why the risk is accepted and timestamp for the acceptance. * After the request is approved, the issue is assigned the **Accepted Risk** state and will be treated as a **Closed** issue. Therefore, SLAs don’t apply to it. * Reopening vulnerabilities. * An vulnerability is reope*n*ed by Software Secured if—after it was first detected and then confirmed to be remediated—it is detected again. * If your team chooses to mitigate an issue that you **Accepted Risk** on in the past, you will need to reopen it before you can request retesting. * To reopen an issue, select an **Accepted Risk** vulnerability and click **Reopen Issue**. The issue is then marked with the **Updated** status and the original risk score is applied again. For any new report, the issue is moved back into the main report. {% hint style="info" %} For more information about tracking remediation efforts, see [Remediating vulnerabilities](/after-testing/remediating-vulnerabilities.md). {% endhint %} --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.softwaresecured.com/findings/viewing-and-acting-on-your-pentest-results.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.