Understanding Your Dashboard

Understanding Your Dashboard

The Ossprey dashboard is your central hub for monitoring software supply chain security across your repositories. This guide walks you through the key areas of the interface.


Dashboard overview

Your dashboard home page provides a quick overview of your security status across all monitored projects. At the top, you'll see three key metrics:
  • Assets — the total number of projects and repositories you're monitoring (GitHub repos, online scans, CLI scans)
  • Packages (Coming Soon) — the total number of software packages (dependencies) analysed across all your assets
  • Malware Detected (Coming Soon) — the number of malicious or vulnerable packages found. If this number is greater than zero, investigate immediately.
Below the metrics, an activity chart (coming soon) shows your scanning activity over time, helping you understand how frequently your projects are being scanned and when scans are occurring.
The sidebar provides quick links to Scan Results, GitHub Integrations, and the latest news from the Ossprey blog.


Scan history

Navigate to Scan Results from the sidebar to view all your scans. You can filter by:
  • Quick search — find assets by repository name, organisation, or package name
  • Status — toggle between All and Malicious Only
  • Type — filter by GitHub repositories, online scans, or other scan sources
  • Date range — narrow results to a specific time period
Click Reset to clear all filters.
Each asset in the list shows its type, name, last scanned date, and security status:
  • Check Mark Button Safe — no security issues detected
  • Warning Vulnerable — security issues found that need attention
  • Counterclockwise Arrows Button Scanning — scan currently in progress


Repository overview

Repositories connected through the GitHub integration are listed on both the Scan Results page and the GitHub Monitoring page. Each shows the repository name, last scan time, and current scan status.
Click any repository to drill into scan details — you'll see the full list of components (dependencies) found, their versions, package types, and vulnerability status. You can filter components by name, package type, or vulnerability status.