The access to the list of detected vulnerabilities is given by scopes assigned to the user as follows.
If a user is assigned the default scope, the has access to all information about the detected vulnerabilities, including CI/CD objects.
If the scope assigned to a user entails access to resources based on registries, the user is shown vulnerabilities for which the value of the Workloads column is 0.
If the scope assigned to a user entails access to resources based on clusters, the user is shown vulnerabilities for which the value of the Workloads column is greater than 0.
If the scope assigned to a user entails access to resources based on registries and clusters, the user is shown vulnerabilities for which the value of the Workloads column is greater than or equal to 0.