Workflow Configuration Parameters in the Mend Platform
Overview
This article covers the Automation Workflow configuration options within the Application of the Mend Platform.
Getting it done
Workflows - General Details
The General Details section is where you name your workflow. This value is displayed in the Name column within the Automation page of the Mend Platform.
Tip: We recommend naming the workflow with a value that will help you and your team understand its usage.
Workflows - Triggering Event
The Triggering Event section is where you set the event(s) (WHEN) to trigger the workflow:
AI Analysis
Code Analysis
Containers Analysis
Dependencies Analysis
New Application Created
New Project Created
Workflows - Scope Conditions
The Scope Conditions section is where you define the scope that the conditions/triggers will apply to, where you can select the option to Include/Exclude the defined settings:
Entire Organization
Application
Project
Labels
Workflows - Event Conditions
The Event Conditions section is where you set the condition(s) (IF) to trigger the workflow. You can set multiple conditions condition groups and define their logical expressions (OR, AND).
By Model Scan Complete - AI
Condition | Details |
|---|---|
| The workflow action will be triggered if a malicious model is detected (or not). You can set the workflow trigger values to either |
| The workflow action will be triggered if a specific License Name is found (or not). You can set the workflow trigger values to either Notes:
|
| Set the Model Age by those older than a certain number of days or months, defining a specific date range ( |
| The workflow action will be triggered if a model name matching the defined criteria is detected. |
| The workflow action will be triggered if a specific Vulnerability ID is found (or not). You can set the workflow trigger values to either |
| Set the Vulnerability Score rating criteria that will trigger the workflow action. The supported syntax is a decimal number from 0 - 10. For example: |
| The workflow action will be triggered if a Vulnerability Severity equals (or not). You can set the workflow trigger values to either |
By Code Scan Complete - SAST
Condition | Details |
|---|---|
| Set the Finding Age by those older than a certain number of days or months, defining a specific date range ( |
| Set the specific CWE Type ID from the provided dropdown list that will trigger the workflow action. Note: Using the OWASP Top 10, SANS Top 25 or PCI DSS templates from the Template Gallery will autofill all the relevant CWE Type IDs.  |
| Set the Findings Severity and occurrences criteria that will trigger the workflow action. The supported syntax is a number greater than 0. |
By Dependencies Scan Complete - SCA
Condition | Details |
|---|---|
| Set the EPSS Score rating criteria that will trigger the workflow action. The supported syntax is a decimal number from 0 - 1. For example: |
| The workflow action will be triggered if a malicious package is detected (or not). You can set the workflow trigger values to either |
| The workflow action will be triggered if a library name matching the defined criteria is detected. |
| The workflow action will be triggered if a specific License Name is found (or not). You can set the workflow trigger values to either Note:
|
| The workflow action will be triggered if a specific Vulnerability ID is found (or not). You can set the workflow trigger values to either |
| The workflow action will be triggered if a Reachable Vulnerability is found (or not). You can set the workflow trigger values to either |
| Set the Vulnerability Score rating criteria that will trigger the workflow action. The supported syntax is a decimal number from 0 - 10. For example: |
| The workflow action will be triggered if a Vulnerability Severity equals (or not). You can set the workflow trigger values to either |
By Image Scan Complete - Containers
Condition | Details |
|---|---|
| Set the EPSS Score rating criteria that will trigger the workflow action. The supported syntax is a decimal number from 0 - 1. For example: |
| The workflow action will be triggered if a library name matching the defined criteria is detected. |
| The workflow action will be triggered if a specific License Name is found (or not). You can set the workflow trigger values to either Note: Event conditions for licenses rely on exact string matches and do not support ranges. |
| The workflow action will be triggered if a specific Vulnerability ID is found (or not). You can set the workflow trigger values to either |
| The workflow action will be triggered if a Reachable Vulnerability is found (or not). You can set the workflow trigger values to either |
| Set the Vulnerability Score rating criteria that will trigger the workflow action. The supported syntax is a decimal number from 0 - 10. For example: |
| The workflow action will be triggered if a Vulnerability Severity equals (or not) . You can set the workflow trigger values to either |
Workflows - Action options
The Actions section is where you set the response (THEN) to the condition(s) being met for the workflow.
Value | Details |
|---|---|
| Set the Labels from the provided dropdown list that will be assigned for the Application/Project. Note: The number of selected labels is limited to 50. |
| Create a Jira Issue. Note: Creating Jira Issues from within the Mend Platform requires you to have Mend's Jira Integration installed and configured. |
| Create a Policy Violation for a triggered completed scan. You have to configure the Violation Priority, Violation SLA, and if to fail the pipeline when a violation is detected. To learn more about configuring policy violation settings, please refer to our Configure Policy Violations with Automation Workflows documentation.  |
| When triggered, findings from this workflow are added to the scan summary email sent to the Organization and Application Admins. Notification preferences can be managed from the Profile settings (  |
Email Notifications
Navigate to My Profile → Email Notifications to enable/disable Scan Summary Email notifications for your user.
Email notifications can be enabled/disabled per organization or as a bulk operation for all the organizations your user is a member of, using the Enable for All Organizations toggle.
Click “Yes, Enable” when prompted, to confirm.
Email Notifications Behavior
By default, users will receive scan summary emails only for applications they are authorized to access, based on their assigned permissions.