Public Docs / Risk / Scoring Overview
Risk Scoring Overview
Phoenix risk scoring is designed for operational prioritization. It aggregates multiple vulnerability and package risk signals into a practical severity posture.
Weighting details and tuning parameters are intentionally not exposed in public documentation.
What the Score Represents
- Relative urgency for review and remediation.
- A risk posture that combines exploitability, exposure, and confidence indicators.
- A consistent lens across CVE and package intelligence workflows.
How to Use It
- Prioritize higher-risk findings for immediate validation.
- Use trend and context pages for queue-level planning.
- Pair score output with asset context and business impact.