Bulk actions on incidents
Bulk actions allow you to perform the same action on multiple incidents simultaneously, improving your remediation workflow efficiency.
How to use bulk actions
- Navigate to your incidents page
- Select multiple incidents using checkboxes
- The bulk actions toolbar appears at the top
- Choose your desired action
tip
Use the header checkbox to select all incidents on the page, or click "Select all X incidents" to select all matching your current filters.
Available actions
Status management
- Assign/Unassign: Distribute incidents to team members
- Resolve: Mark incidents as fixed (requires resolution reason)
- Ignore: Mark as false positives or non-issues (requires ignore reason)
- Reopen: Change closed incidents back to open status
Organization
- Set severity: Update priority levels (Critical, High, Medium, Low)
- Add custom tags: Categorize incidents (requires workspace configuration)
- Comment: Add notes visible in incident timelines
Collaboration
- Share: Grant access to users or teams (Business plan only)
- Download: Export incident data as CSV reports
Best practices
- Filter first: Use search and filters to narrow your selection
- Verify selection: Check the count before executing actions
- Start small: Begin with smaller batches to learn the workflow
- Document actions: Use comments to explain bulk decisions
Permissions
- Can view: No bulk actions available
- Can edit: All actions except sharing
- Full access: All bulk actions including sharing
note
Some incidents may be excluded if you lack sufficient permissions for those specific incidents.
