# Manage False Positives

Manage false positives allows you to define few parameters and assign values to them which can be used to signal false positive at the time of scanning for code secrets. When you define a parameter as a false positive, you can easily detect these

## Adding a False Positive Pattern

PCC Security tool allows you to add a false positive parameter which allows the

To add a false positive pattern, perform the following steps:

1.Login into [PCC](https://projectadmin.lfx.linuxfoundation.org).

2\. Search for the required project. The Project dashboard appears. Click **Security** from the **LFX Tools STATUS** tab.

{% hint style="info" %}
You can also navigate to Security from the Vertical Sidebar navigation menu. Click **LFX Tools** and then select **Security**.
{% endhint %}

<figure><img src="https://3411187760-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M2DCN9UgoRgMEkgnLyP-887967055%2Fuploads%2Fgit-blob-42208ead57a9768407e1fd8bb613a67f8019ea69%2FSec2.png?alt=media" alt=""><figcaption><p>Security</p></figcaption></figure>

3.The Security page appears. From the **Manage False Positive** tab, click **Proceed**.

![Manage False Positive](https://3411187760-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M2DCN9UgoRgMEkgnLyP-887967055%2Fuploads%2Fgit-blob-0efc24ff25261b1af87863da16a4e1a88da77c60%2FMP1.png?alt=media\&token=ce6e58de-97b2-4909-b819-66bdc158ef2d)

4.The Manage False Positive page appears with the list of defined false positive parameters. Click **Add False Positive Pattern** to add a new false positive parameter.

{% hint style="info" %}

* You can delete the existing false positive parameter by click of delete ![](https://3411187760-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M2DCN9UgoRgMEkgnLyP-887967055%2Fuploads%2Fgit-blob-2e6a55d536f88c31b5c05888f58a9431dacb7b90%2FDelete_Icon.png?alt=media\&token=63a190c7-ca7c-4130-b5bd-2513c79c5781) icon.
* You can update the existing false positive parameter by click of edit ![](https://3411187760-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M2DCN9UgoRgMEkgnLyP-887967055%2Fuploads%2Fgit-blob-0369e1c60857492b84f15ec24582027c07b62b00%2FEdit_Icon.png?alt=media\&token=0c427779-6415-405c-ab8d-5d39c69aa070) icon.
  {% endhint %}

![Add False Positive](https://3411187760-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M2DCN9UgoRgMEkgnLyP-887967055%2Fuploads%2Fgit-blob-009e12201e0c467e4ebf282e8045304d6ab4d653%2FMP2.png?alt=media)

5.The Add False Positive Pattern dialog box appears. There are three parameters that are available for you to select and define. After defining the parameter, click **Add** to add the parameter as false positive. The three parameters are:

* **Path** - Define the path for which you want to flag
* **Secret Type** - You can select the required secret type from the drop-down list. Some of the secret types are password assignment, JWT toke, AWS key and many other secret types are available for your to select.
* **Secret Value** - You should use a regular expression in order to define a value for Secret Value.

{% hint style="info" %}
A regular expression (regex or regexp) is a sequence of characters that specifies a search pattern. Usually such patterns are used by string-searching algorithms for "find" or "find and replace" operations on strings, or for input validation. For more information, refer [Regular Expressions](https://www.debuggex.com/cheatsheet/regex/pcre).
{% endhint %}

![Add False Positive Parameter](https://3411187760-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M2DCN9UgoRgMEkgnLyP-887967055%2Fuploads%2Fgit-blob-cf6168509f311f808aac8f1e1f9d6224d7c7a0e9%2FAdd_False.gif?alt=media)