diff --git a/docs/faq/code-analysis/images/bypass-status-check.png b/docs/faq/code-analysis/images/bypass-status-check.png
index 90848f7dbe..e70469648b 100644
Binary files a/docs/faq/code-analysis/images/bypass-status-check.png and b/docs/faq/code-analysis/images/bypass-status-check.png differ
diff --git a/docs/faq/repositories/images/reanalyze-repository-commit.png b/docs/faq/repositories/images/reanalyze-repository-commit.png
index 7b6c821ce1..9f25ff5866 100644
Binary files a/docs/faq/repositories/images/reanalyze-repository-commit.png and b/docs/faq/repositories/images/reanalyze-repository-commit.png differ
diff --git a/docs/faq/repositories/images/reanalyze-repository-commits-list.png b/docs/faq/repositories/images/reanalyze-repository-commits-list.png
index 136533cf43..abcd05da6b 100644
Binary files a/docs/faq/repositories/images/reanalyze-repository-commits-list.png and b/docs/faq/repositories/images/reanalyze-repository-commits-list.png differ
diff --git a/docs/faq/repositories/images/reanalyze-repository-pr.png b/docs/faq/repositories/images/reanalyze-repository-pr.png
index 55f0cc478f..55a8bbb68a 100644
Binary files a/docs/faq/repositories/images/reanalyze-repository-pr.png and b/docs/faq/repositories/images/reanalyze-repository-pr.png differ
diff --git a/docs/faq/repositories/images/reanalyze-repository-prs-list.png b/docs/faq/repositories/images/reanalyze-repository-prs-list.png
index aeaef2ac0f..9ef88175c6 100644
Binary files a/docs/faq/repositories/images/reanalyze-repository-prs-list.png and b/docs/faq/repositories/images/reanalyze-repository-prs-list.png differ
diff --git a/docs/faq/troubleshooting/images/duplication-commits.png b/docs/faq/troubleshooting/images/duplication-commits.png
index 839804c52b..c1a3f31a1f 100644
Binary files a/docs/faq/troubleshooting/images/duplication-commits.png and b/docs/faq/troubleshooting/images/duplication-commits.png differ
diff --git a/docs/faq/troubleshooting/images/error-line-endings.png b/docs/faq/troubleshooting/images/error-line-endings.png
index 69a844e312..98b533ebae 100644
Binary files a/docs/faq/troubleshooting/images/error-line-endings.png and b/docs/faq/troubleshooting/images/error-line-endings.png differ
diff --git a/docs/getting-started/images/codacy-intellij-plugin-main-view.png b/docs/getting-started/images/codacy-intellij-plugin-main-view.png
new file mode 100644
index 0000000000..09f290b9ed
Binary files /dev/null and b/docs/getting-started/images/codacy-intellij-plugin-main-view.png differ
diff --git a/docs/getting-started/images/codacy-intellij-plugin-problems-tab.png b/docs/getting-started/images/codacy-intellij-plugin-problems-tab.png
new file mode 100644
index 0000000000..59f90005de
Binary files /dev/null and b/docs/getting-started/images/codacy-intellij-plugin-problems-tab.png differ
diff --git a/docs/getting-started/images/codacy-intellij-plugin-sign-in.png b/docs/getting-started/images/codacy-intellij-plugin-sign-in.png
new file mode 100644
index 0000000000..6c95913219
Binary files /dev/null and b/docs/getting-started/images/codacy-intellij-plugin-sign-in.png differ
diff --git a/docs/getting-started/integrating-codacy-with-intellij-ides.md b/docs/getting-started/integrating-codacy-with-intellij-ides.md
new file mode 100644
index 0000000000..8ecbe18c82
--- /dev/null
+++ b/docs/getting-started/integrating-codacy-with-intellij-ides.md
@@ -0,0 +1,86 @@
+# Integrating Codacy with IntelliJ IDEs
+
+The [Codacy IntelliJ plugin](https://github.com/codacy/codacy-intellij-extension) is an open-source plugin for IntelliJ IDEs that lets you review the result of the Codacy analysis for a pull request, get the full list of problems found, and navigate to any Quality issue that you want to review and fix.
+
+!!! info "To use this plugin you need a [Codacy account](https://www.codacy.com/signup-codacy)"
+
+## Interface overview
+
+The main view of the Codacy IntelliJ plugin provides a summary of the code quality and coverage changes introduced by the pull request of the currently checked-out branch.
+
+
+
+In the main view, you can find the following information:
+
+- The **Quality status** of the pull request, either up to standards or not up to standards, based on the [Quality gates](../repositories-configure/adjusting-quality-gates.md) set for the repository.
+
+- Any **Quality issues** introduced or fixed by the pull request. These are the same issues you find in the [Quality Issues tabs](../repositories/pull-requests.md#issues-tabs) in the Codacy app and are also visible in IntelliJ's Problems tab.
+
+ When this item is expanded, the number next to each file name is the total number of Quality issues that the pull request adds to that file.
+
+- The **diff coverage** introduced by the pull request. This is the same value you find in the [Pull request coverage overview](../repositories-coverage/pull-requests.md#coverage-overview) panel in the Codacy app. The percentage next to each file name is the coverage variation for that file.
+
+- Sequences of **duplicate code** (clones) introduced by the pull request. These are the same ones you find in the [Quality Duplication tabs](../repositories/pull-requests.md#duplication-tabs) in the Codacy app.
+
+- Variations in **code complexity** introduced by the pull request.
+
+## Installing the Codacy IntelliJ plugin
+
+!!! info "The Codacy IntelliJ plugin is compatible with IntelliJ IDEA (Ultimate, Community), Android Studio, and Aqua."
+
+1. Make sure that the repository you’re working on is analyzed by Codacy and that you have a [repository read](../organizations/roles-and-permissions-for-organizations.md) role or higher.
+
+ !!! tip
+ If this is your first time using Codacy, see [how to add and analyze your first repository](./codacy-quickstart.md#adding-your-first-repository).
+
+1. Install the plugin from the [JetBrains Marketplace](https://plugins.jetbrains.com/plugin/23924-codacy) or through the [plugin settings panel](https://www.jetbrains.com/help/idea/managing-plugins.html) in your IntelliJ IDE.
+
+## Getting pull request quality and coverage data
+
+To see Codacy quality and coverage data for an open pull request, follow these steps:
+
+1. Open the repository directory in your IntelliJ IDE.
+
+ !!! note
+ If the repository isn't on Codacy yet, [add it to Codacy](../organizations/managing-repositories.md#adding-a-repository) first.
+
+1. Open the main view by clicking the **Codacy logo** in the left tool window bar.
+
+ 
+
+1. If you’re not signed in, click the **Sign in** button to authorize IntelliJ on Codacy.
+
+1. Check out the pull request of interest.
+
+After completing these steps, the main view shows the result of the latest Codacy analysis for the pull request.
+
+## Reviewing pull request issues
+
+In the **Problems tool window**, Codacy displays the same Quality issues you find in the main view and lets you navigate to the exact line of code where the issue was found.
+
+!!! note
+ Code coverage, duplicates, and complexity aren't currently shown in the Problems tool window.
+
+To review Quality issues:
+
+1. Open the file you want to review.
+
+ You can find the list of files with issues in the main view of the Codacy plugin. Double-click the file name to open it in the editor.
+
+1. Open the **Problems tool window** (use `Ctrl+6` on Windows/Linux or `Cmd+6` on macOS) and select the **File** tab.
+
+ 
+
+1. Click the name of the issue you want to review.
+
+1. Hover over a highlighted issue in the code editor to view available actions and suggested quick fixes, if available.
+
+ For a list of tools that support suggested fixes, see [Supported languages and tools](./supported-languages-and-tools.md#supported-languages-and-tools).
+
+1. Once you've addressed the problems in your code, push your changes to the Git provider so that Codacy analyzes the updated code.
+
+When the analysis is complete, the Codacy plugin automatically refreshes the pull request analysis result. You can also refresh the pull request data manually by clicking the Refresh Pull Request button in the main view.
+
+## See also
+
+- [Troubleshooting the Codacy IntelliJ plugin](https://github.com/codacy/codacy-intellij-extension?tab=readme-ov-file#troubleshooting)
diff --git a/docs/getting-started/integrating-codacy-with-visual-studio-code.md b/docs/getting-started/integrating-codacy-with-visual-studio-code.md
index 8cd6524d64..333e9e0c08 100644
--- a/docs/getting-started/integrating-codacy-with-visual-studio-code.md
+++ b/docs/getting-started/integrating-codacy-with-visual-studio-code.md
@@ -24,7 +24,7 @@ The **Pull request status** tab displays the following information for the pull
- Any **Quality issues** introduced or fixed by the pull request. These are the same issues you find in the [Quality Issues tabs](../repositories/pull-requests.md#issues-tabs) in the Codacy app and are also visible in VS Code's Problems tab.
- The number next to each file name is the total number of Quality issues that the pull request adds to or removes from that file. The number farther to the right, added by VS Code, is the total number of problems in that file, which may or may not be Quality issues from Codacy. If there are any Medium or Critical Quality issues, the file name is also highlighted in yellow (Medium) or red (Critical).
+ When this item is expanded, the number next to each file name is the total number of Quality issues that the pull request adds to or removes from that file. The number farther to the right, added by VS Code, is the total number of problems in that file, which may or may not be Quality issues from Codacy. If there are any Medium or Critical Quality issues, the file name is also highlighted in yellow (Medium) or red (Critical).
diff --git a/docs/organizations/images/security-risk-management-dashboard.png b/docs/organizations/images/security-risk-management-dashboard.png
deleted file mode 100644
index 04dea1c58b..0000000000
Binary files a/docs/organizations/images/security-risk-management-dashboard.png and /dev/null differ
diff --git a/docs/organizations/images/security-risk-management-finding-details.png b/docs/organizations/images/security-risk-management-finding-details.png
new file mode 100644
index 0000000000..f488c530c8
Binary files /dev/null and b/docs/organizations/images/security-risk-management-finding-details.png differ
diff --git a/docs/organizations/images/security-risk-management-findings.png b/docs/organizations/images/security-risk-management-findings.png
new file mode 100644
index 0000000000..22d91aa2d0
Binary files /dev/null and b/docs/organizations/images/security-risk-management-findings.png differ
diff --git a/docs/organizations/images/security-risk-management-item-list.png b/docs/organizations/images/security-risk-management-item-list.png
deleted file mode 100644
index c032d3d69e..0000000000
Binary files a/docs/organizations/images/security-risk-management-item-list.png and /dev/null differ
diff --git a/docs/organizations/images/security-risk-management-overview-distribution.png b/docs/organizations/images/security-risk-management-overview-distribution.png
new file mode 100644
index 0000000000..9f4294510e
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview-distribution.png differ
diff --git a/docs/organizations/images/security-risk-management-overview-history-activity.png b/docs/organizations/images/security-risk-management-overview-history-activity.png
new file mode 100644
index 0000000000..b11d4a50d9
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview-history-activity.png differ
diff --git a/docs/organizations/images/security-risk-management-overview-history-open.png b/docs/organizations/images/security-risk-management-overview-history-open.png
new file mode 100644
index 0000000000..118ee15444
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview-history-open.png differ
diff --git a/docs/organizations/images/security-risk-management-overview-open.png b/docs/organizations/images/security-risk-management-overview-open.png
new file mode 100644
index 0000000000..01e5b36681
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview-open.png differ
diff --git a/docs/organizations/images/security-risk-management-overview-top-categories.png b/docs/organizations/images/security-risk-management-overview-top-categories.png
new file mode 100644
index 0000000000..4a973ce593
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview-top-categories.png differ
diff --git a/docs/organizations/images/security-risk-management-overview-top-risk.png b/docs/organizations/images/security-risk-management-overview-top-risk.png
new file mode 100644
index 0000000000..c8ba51285f
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview-top-risk.png differ
diff --git a/docs/organizations/images/security-risk-management-overview.png b/docs/organizations/images/security-risk-management-overview.png
new file mode 100644
index 0000000000..8e3e815d5d
Binary files /dev/null and b/docs/organizations/images/security-risk-management-overview.png differ
diff --git a/docs/organizations/managing-security-and-risk.md b/docs/organizations/managing-security-and-risk.md
index a273f19230..dcd39b63c2 100644
--- a/docs/organizations/managing-security-and-risk.md
+++ b/docs/organizations/managing-security-and-risk.md
@@ -1,73 +1,129 @@
# Managing security and risk
-The Security and risk management feature helps you quickly identify, track, and address security issues by automatically opening time-bound, prioritized action items whenever Codacy detects security issues in your organization repositories or in your [connected Jira instance](./integrations/jira-integration.md).
+The Security and risk management feature helps you quickly identify, track, and address security across your organization by automatically opening time-bound, prioritized findings whenever security problems are detected in your organization repositories, in your [connected Jira instance](./integrations/jira-integration.md), or as a result of [penetration testing](https://go.codacy.com/pen-testing-product).
-Under Security and risk management, you can find the following pages to help you monitor your security issues:
+Under Security and risk management, you can find the following pages to help you monitor the security of your repositories:
-- [Dashboard](#dashboard)
-- [Item list](#item-list)
+- [Overview](#dashboard)
+- [Findings](#item-list)
-## Dashboard
+In addition, on these pages, you can [share filtered views of findings](#sharing-filtered-view), [export findings as a CSV file](#exporting-the-security-item-list), and [review severity rules and integration settings](#reviewing-settings)
-The **Security and risk management** dashboard provides a general overview of items, based on their status.
+## Overview {: id="dashboard"}
-To access the dashboard, select an organization from the top navigation bar and select **Security and risk** on the left navigation sidebar.
+The **Security and risk management overview** page provides a high-level view of the security posture of your organization, including the number of open findings, the distribution of open findings by severity, the history of finding resolution, and a breakdown of the most high-risk repositories and most detected security categories.
-The main area of the dashboard includes five panels:
+Use this page to assess your organization's security posture and its progress over time, identify areas for improvement, and share findings with stakeholders.
-- **Total:** all open items
-- **Due soon:** open items within 15 days of their deadline
-- **Overdue:** open items with a missed deadline
-- **Closed on time:** items closed before the deadline
-- **Closed late:** items closed after the deadline
+To access the overview page, select an organization from the top navigation bar and select **Security and risk** on the left navigation sidebar.
-Each panel shows the total count of matching items and contains a **Review** button to view a list of matching items.
+
-When viewing the dashboard, you can:
+The overview page includes six panels:
-- Limit the total counts in each panel to a specific set of severities, repositories, or security categories by clicking the filter drop-downs above the main area.
+- [Open findings overview](#open-findings-overview)
+- [Open findings distribution](#open-findings-distribution)
+- [Open findings history](#open-findings-history)
+- [Activity history](#activity-history)
+- [Top 10 high-risk repositories](#top-10-high-risk-repositories)
+- [Top 10 common security categories](#top-10-common-security-categories)
-- Review the [severity assignment rules](#item-severities-and-deadlines) by clicking the **See rules** button in the top right-hand corner of the page.
+To limit the information displayed in each panel to a specific set of repositories, use the filter drop-down above the main area.
-
+### Open findings overview
-## Item list
+The **Open findings overview** panel displays the total number of open security findings and the number of findings of each severity, helping you quickly assess the overall security posture of your organization and quickly review findings that are critical or overdue.
-The **Security and risk management items** page displays a filtered list of items, sorted by due date ascending.
+To access the findings page with the corresponding filter applied, click on a number.
-To access the item list, access the [dashboard](#dashboard) and click the **Review** button in the area of interest, based on the desired filtering.
+
-When viewing the item list, you can:
+### Open findings distribution
-- Update the filtering criteria by clicking the **Severity**, **Status**, **Repository**, or **Security category** drop-downs above the list.
+The **Open findings distribution** panel shows the relative distribution of open findings by scan kind, severity, or status, helping you evaluate the distribution of risk across different scan kinds and identify areas that may need immediate attention.
-- Find out more about an item by clicking its **Details** column to navigate to the item of interest on the source platform.
+To select the desired distribution, use the drop-down in the top right-hand corner of the panel.
-- Review the [severity assignment rules](#item-severities-and-deadlines) by clicking the **See rules** button in the top right-hand corner of the page.
+To access the findings page with the corresponding filter applied, click on a number.
-
+
-## Exporting the security item list
+### Open findings history
+
+The **Open findings history** graph shows the open findings trends over the past three months, grouped by week and severity. It details the progression of your organization's risk and security posture over time and can, for example, help you understand if the right issues are being addressed.
+
+For a detailed view of the distribution on a specific week, hover over the graph.
+
+
+
+### Activity history
+
+The **Activity history** graph shows weekly counts of open and closed findings over the past three months, overlaid on the overall open findings trend. It complements the **Open findings history** graph with more information, such as the volume of findings addressed each week and a visual representation of the new/closed ratio.
+
+For a detailed view of the counts on a specific week, hover over the graph.
+
+
+
+### Top 10 high-risk repositories
+
+The **Top 10 high-risk repositories** list shows the repositories with the highest number of open findings, ordered by severity.
+
+!!! note
+ This panel may list fewer than ten repositories if there are fewer than ten repositories with open findings in the organization or if fewer than ten repositories are selected in the dropdown **Repository** filter.
+
+
+
+### Top 10 common security categories
+
+The **Top 10 common security categories** list shows the most common security categories of open findings, ordered by count.
+
+To access the findings page with the corresponding filter applied, click on a category.
+
+
+
+## Findings {: id="item-list"}
+
+The **Security and risk management findings** page displays a filtered list of findings. By default, this list is sorted by status, and you can click the **First detected** column name to sort the findings by the detection date. Use this page to review and prioritize findings and track the progress of your security efforts.
+
+To access the findings page, access the [overview page](#dashboard) and click the **Findings** tab.
+
+
+
+When viewing the findings, you can update the filtering criteria by clicking the **Severity**, **Status**, **Repository**, or **Security category** drop-downs above the list.
+
+To find out more about a finding in the list, click its **Details** column to navigate to the finding details on the source platform.
+
+
+
+## Sharing a filtered view of findings {: id="sharing-filtered-view"}
+
+To share the current view of the overview or findings page, click the **Copy URL** button in the top right-hand corner of the page. This action copies the URL with the current filters applied to the clipboard.
+
+## Exporting findings {: id="exporting-the-security-item-list"}
!!! info "This feature is available only to organization admins and organization managers"
-To export a list of security items as a CSV file, click the **Export CSV** button in the top right-hand corner of the page. The exported list always includes all items, ignoring any applied filters.
+To export a list of findings as a CSV file, click the options menu in the top right-hand corner of the page and select **Export findings (.csv)**. The exported list always includes all findings, ignoring any applied filters.
+
+## Reviewing severity rules and integration settings {: id="reviewing-settings"}
-## How Codacy manages security items {: id="opening-and-closing-items"}
+To [review the severity assignment rules](#item-severities-and-deadlines) or manage the integration with [Jira](./integrations/jira-integration.md) or [Slack](./integrations/slack-integration.md), click the options menu in the top right-hand corner of the page and select respectively **See severity rules** or **View integrations**.
+
+## How Codacy manages findings {: id="opening-and-closing-items"}
!!! important
- To open and close security items, Codacy must detect when the associated issues are introduced and fixed. The detection logic is platform-dependent and is described below.
+ To open and close findings, Codacy must detect when the associated issues are introduced and fixed. The detection logic is platform-dependent and is described below.
-Codacy opens a new security item whenever a source platform detects a new security issue. The new item is automatically assigned a severity and a status:
+Codacy opens a new finding whenever a source platform detects a new security issue. The new finding is automatically assigned a severity and a status:
-- The priority of the issue on the source platform sets the [severity of the item](#item-severities-and-deadlines). In turn, the severity of the item defines a deadline to close the item.
-- The time to the deadline sets the [status of the item](#item-statuses). The item then moves through different statuses as the deadline is approached, met, or missed.
+- The priority of the issue on the source platform sets the [severity of the finding](#item-severities-and-deadlines). In turn, the severity of the finding defines a deadline to close the finding.
+- The time to the deadline sets the [status of the finding](#item-statuses). The finding then moves through different statuses as the deadline is approached, met, or missed.
-Codacy closes an item when the source platform stops detecting the associated security issue.
+Codacy closes a finding when the source platform stops detecting the associated security issue.
-The following section details when Codacy opens and closes items for each supported platform.
+The following section details when Codacy opens and closes findings for each supported platform.
-### How Codacy manages items detected on Git repositories {: id="opening-and-closing-codacy-items"}
+### How Codacy manages findings detected on Git repositories {: id="opening-and-closing-codacy-items"}
!!! note
To make sure that Codacy detects security issues correctly:
@@ -76,37 +132,44 @@ The following section details when Codacy opens and closes items for each suppor
- Alternatively, [apply a coding standard](using-coding-standards.md) that includes patterns belonging to the Security category.
- Confirm that the latest [commits](../repositories/commits.md) to the default branches of your repositories are analyzed.
-Codacy opens a new item when it detects a new security issue on the default branch of a repository.
+Codacy opens a new finding when it detects a new security issue on the default branch of a repository.
-Codacy closes an item in either of the following cases:
+Codacy closes a finding in either of the following cases:
- Codacy detects that the associated issue isn't present in the most recent analyzed commit and therefore is fixed
- You [ignore the associated issue](../repositories/issues.md#ignoring-and-managing-issues)
- You [disable the tool](../repositories-configure/configuring-code-patterns.md) that found the associated issue
!!! important
- Deleting a repository deletes all open items belonging to that repository.
+ Deleting a repository deletes all open findings belonging to that repository.
-### How Codacy manages items detected on Jira {: id="opening-and-closing-jira-items"}
+### How Codacy manages findings detected on Jira {: id="opening-and-closing-jira-items"}
!!! note
- For Codacy to detect Jira issues, you must [integrate Jira with Security and risk management](./integrations/jira-integration.md).
- Codacy retrieves updates from Jira once a day. If an issue is opened and closed on the same day, Codacy may not detect it.
- To make sure that Codacy detects Jira issues correctly, assign the **security** label when creating the issue or immediately after.
-Codacy opens a new item when it detects a new Jira issue with a **security** label (case-insensitive).
+Codacy opens a new finding when it detects a new Jira issue with a **security** label (case-insensitive).
-Codacy closes an item when it detects that the associated Jira issue is marked as Closed.
+Codacy closes a finding when it detects that the associated Jira issue is marked as Closed.
-## Item statuses
+### How Codacy manages findings detected during penetration testing {: id="opening-and-closing-pen-testing-items"}
-The following table describes how item statuses map to deadlines:
+!!! note
+ Penetration testing is available upon request and is provided by a third-party partner. See [how to request penetration testing for your organization](https://go.codacy.com/pen-testing-product).
+
+Codacy opens a new finding when penetration testing results are published by our partner.
+
+## Finding statuses {: id="item-statuses"}
+
+The following table describes how finding statuses map to deadlines:
| Status category |
- Item status |
+ Finding status |
Deadline |
@@ -136,16 +199,19 @@ The following table describes how item statuses map to deadlines:
-## Item severities and deadlines
+## Finding severities and deadlines {: id="item-severities-and-deadlines"}
+
+!!! note
+ Currently, Codacy doesn't support customizing the severity rules for security findings.
-The following table defines item severities and days to fix the associated security issue, based on the importance of the underlying issue:
+The following table defines finding severities and days to fix the associated security issue, based on the importance of the underlying issue:
-| Item
severity |
Days to fix | Underlying Codacy
issue severity | Underlying Jira
issue priority 1 |
-|-------------------|------------------|--------------------------------------|-------------------------------------------------|
-| Critical | 30 | Critical | Highest |
-| High | 60 | - | High |
-| Medium | 90 | Medium | Medium |
-| Low | 120 | Minor | Low and other/custom |
+| Finding
severity |
Days to fix | Underlying Codacy
issue severity | Underlying Jira
issue priority 1 |
+|----------------------|------------------|--------------------------------------|-------------------------------------------------|
+| Critical | 30 | Critical | Highest |
+| High | 60 | - | High |
+| Medium | 90 | Medium | Medium |
+| Low | 120 | Minor | Low and other/custom |
1 Those listed are the default Jira priority names. If you rename a default Jira priority, it keeps the correct mapping.
@@ -336,11 +402,14 @@ Security and risk management supports checking the languages and infrastructure-
2: Currently, Trivy only supports scanning YAML files on this platform.
3: Supported as a [client-side tool](../repositories-configure/local-analysis/client-side-tools.md).
4: Includes the plugin [Find Security Bugs](https://find-sec-bugs.github.io/).
-5: Includes the plugins [no-unsanitized](https://www.npmjs.com/package/eslint-plugin-no-unsanitized), [security](https://www.npmjs.com/package/eslint-plugin-security), [security-node](https://www.npmjs.com/package/eslint-plugin-security-node), and [xss](https://www.npmjs.com/package/eslint-plugin-xss).
+5: Includes the plugins [no-unsanitized](https://www.npmjs.com/package/eslint-plugin-no-unsanitized), [security](https://www.npmjs.com/package/eslint-plugin-security), [security-node](https://www.npmjs.com/package/eslint-plugin-security-node), and [xss](https://www.npmjs.com/package/eslint-plugin-xss).
6: Currently, Codacy doesn't support any static code analysis tool for [Ruby 3.1](https://www.ruby-lang.org/en/news/2021/12/25/ruby-3-1-0-released/).
## Supported security categories
+!!! note
+ Due to a recent update, some issues may be temporarily assigned the **Not yet categorized** category. To categorize these issues, you can [reanalyze the default branch of the relevant repository](../faq/repositories/how-do-i-reanalyze-my-repository.md#reanalyzing-a-branch). For a list of repositories that have issues with this category, use the **Security category** filter on the [Findings](#item-list) page.
+
Each Codacy issue reported by Security and risk management belongs to one of the following security categories: