Can I exclude specific security tests from the scan tool?

The Security Scan Tool merchants cannot exclude specific security tests from Security Scan Tool scans for Adobe Commerce. Each Security Scan Tool security test is written to assist merchants in identifying security risks, malware, and threats.

What does it cost?

The Security Scan Tool is free. Merchants must accept a legal disclaimer that absolves Adobe Commerce of liability based on the results of the security scan or their site’s configuration.

How does the Security Scan Tool work?

The Security Scan Tool is web-based and accessed from the merchant’s online Adobe Commerce account (account.magento.com). The security scan operates over both HTTP and HTTPS. It checks for known security issues and identifies missing Adobe Commerce patches and updates.

How do I sign up to use the Security Scan Tool?

Merchants can register to use the Security Scan Tool to scan their webstores from their Adobe Commerce account (account.magento.com). Follow the link to sign-up for the Security Scan Tool here.

What do I do if I come across a false positive in the scan report?

We recommend to our merchants to investigate all failed scans and take appropriate steps to resolve such issues. After investigation, if merchants come across a scan result that appears to be a false positive, we request the merchant to notify Adobe to take appropriate action.

To submit a false positive report, enter a ticket with Adobe Commerce merchant support so that we can evaluate the false positive, make necessary changes, and/or provide recommendations to avoid seeing such notifications in the future. Merchants can also report a false positive by emailing us at securityscan@magento.com.

Previous pageCan I schedule Content Staging updates for prices in a shared catalog?
Next pageAdobe Commerce Software End of Support FAQ

Commerce


Connect with Experience League at Summit!

Get front-row access to top sessions, hands-on activities, and networking—wherever you are!

Learn more