# Overview

## Vulnerability Detection

The LFX Security tool will scan your open source project code to detect any vulnerabilities in it. The LFX Security tool provides automated scanning to detect potential vulnerabilities and weaknesses, proposing recommended fixes where available to help projects address top security concerns to the open source project.

## Roles and Permissions for LFX Security

The following table provides various roles and their respective permissions for LFX Security:

| Role                         | Full Access | View Access | Settings Access | Dismiss Vulnerability | Actions for Code Secrets | Notification for Non Inclusive Language |
| ---------------------------- | ----------- | ----------- | --------------- | --------------------- | ------------------------ | --------------------------------------- |
| Community Program Manager    | Yes         | Yes         | Yes             | No                    | No                       | No                                      |
| Project Manager              | Yes         | Yes         | Yes             | No                    | No                       | No                                      |
| Project Maintainer           | Yes         | Yes         | Yes             | Yes                   | Yes                      | Yes                                     |
| Project (GitHub) Contributor | Yes         | Yes         | Yes             | Yes                   | Yes                      | Yes                                     |
| Company Employee (Member)    | No          | Yes         | No              | No                    | No                       | No                                      |

The following points explain ail about various permissions that are mentioned in the above table:

* **Full Access** - Full Access permission allows to
  * View all tabs
  * Access to PCC (Project Control Center) to manage Vulnerabilities
  * View access to all tabs without access to PCC
* **Settings Access** - Settings Access permission allows to
  * Access to PCC to manage Vulnerabilities\~\~,\~\~
* **Dismiss Vulnerability** - Dismiss Vulnerability allows you to dismiss vulnerabilities detected in the project code if you feel that the detected vulnerability issue cannot be fixed.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.linuxfoundation.org/lfx/security/overview.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.