Remediations

Overview

Nullify drafts production-ready fixes for all finding types: code vulnerabilities, dependency issues, leaked secrets, cloud misconfigurations, and pentest findings. Developers receive pull requests with patches that match the surrounding code style, iterate on CI feedback to stay mergeable, and respond to review comments. Nullify writes fixes that patch vulnerabilities without breaking existing functionality.

Working with Developers

Status Updates

• Posts to existing Slack threads

• Updates Jira tickets with PR links

• Sends notifications for reviews needed

• Escalates stalled PRs to team leads

Ownership Routing

• Uses CODEOWNERS for reviewer selection

• Considers team capacity (least-loaded developer)

• Respects team boundaries

• Coordinates multi-team changes

Manual Fallback

When automation isn't appropriate:

• Provides detailed fix guidance

• Creates ticket with reproduction steps

• Tags appropriate owner

• Preserves context for future learning