Reporting

Sysdig Reporting is a highly scalable, powerful reporting platform. Use it to quickly create and schedule reports with large swathes of information. Reports are interactive, and historical reports can contain up to 90 days worth of data. You can export reports in a variety of formats, secure data by filtering reports by Zone, and protect reports with a password.

The Reporting module comprises:

Reports Manager: Use this to manage, create and delete reports.
Schedules: Use this to manage and set report schedules.

Migrating Managed & Custom Reports to Reports & Templates

Prior to May 28, 2025, you could:

Use managed reports to generate ad-hoc reports or schedule exports without needing to create custom reports you would have to manage
Copy managed reports to edit the queries within the panels as a custom report.

As of May 28, 2025:

The distinction between managed and custom reports has been abolished.
Managed reports have been converted to templates. You can generate reports from these templates.
All managed reports that have a schedule associated with it, will be converted to a report.
All custom reports will just be considered a report.

For more details, see the Release Announcement.

Reporting Concepts

Templates: Sysdig provides templates that you can create reports from, and modify the configuration.
Reports Manager: Use this UI module to manage, create and delete reports.
Schedules: Use this UI module to manage and set report schedules.

Generate Reports Across the UI

You can manage reports for different features throughout the Secure UI, based on available templates.

In the Secure UI, you can generate reports from:

Templates

Templates are the building blocks to create reports that can be used to generate and export data. Templates come in different levels of customizations, and functionality:

Live view or export only:

Live view templates let you view a sample of the data before exporting or creating a schedule.
Export only templates provide configuration options as you create the report or schedule.
- Most templates provide some level of context within the program owner flows of what to expect, such as the “Policy Compliance Report” & “Resource Posture Report”.

Historical or point-in-time:

Historical reports let you select timeframes either in the report editor in the live view, or when creating a schedule.
Point-in-time reports provide only what is present within the platform at that point in time.

Export formats

PDF - Most reports support exporting to PDF. The exceptions are for export-only templates that are built for CSV exports. When exporting to PDF, table panels are limited to the first 7 columns and the first 500 rows.
JSON - Most reports support exporting to JSON, except for export only templates.
CSV - Only reports that have a single table panel support CSV export.

Migrate from Vulnerability Management Reports

Reporting builds upon and replaces the Vulnerability Management (VM) Reporting interface.

The legacy VM report types correspond to the following reporting templates.

VM Report Type	Template (NEW)
Image Pipeline	Pipeline Vulnerability Findings
Image Registry	Registry Vulnerability Findings
Runtime Workloads	Kubernetes Workload Vulnerability Findings
Runtime Hosts	Host Vulnerability Findings
Runtime Container	Container Vulnerability Findings

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.