> ## Documentation Index
> Fetch the complete documentation index at: https://docs.root.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Platform Overview

> Navigate the Root platform at app.root.io - catalogs, subscriptions, vulnerability tracking, and patching visibility.

The Root platform at [app.root.io](https://app.root.io) gives you visibility into your organization's images, libraries, and vulnerability posture. This section documents the key screens and features.

## Platform pages

<CardGroup cols={2}>
  <Card title="Image Catalog & My Images" icon="layer-group" href="/platform/image-catalog">
    Browse secure container images, subscribe to tags, and track before/after vulnerability reduction.
  </Card>

  <Card title="Library Catalog" icon="book-open" href="/platform/library-catalog">
    Explore Root-secured packages across Python, JavaScript, Java, and Go ecosystems.
  </Card>

  <Card title="My Library" icon="box-archive" href="/platform/my-library">
    Track discovered packages in your organization and identify which have Root-secured versions.
  </Card>

  <Card title="Security Findings" icon="shield-halved" href="/platform/security-findings">
    View and filter all CVEs across your subscribed images and libraries.
  </Card>

  <Card title="CVE Details" icon="magnifying-glass" href="/platform/cve-details">
    Deep-dive into any CVE - affected assets, patch status, remediation timeline, and the affected assets graph.
  </Card>

  <Card title="Agentic Patching" icon="robot" href="/platform/agentic-patching">
    Watch Root's AI agents research, patch, and validate fixes in real time.
  </Card>
</CardGroup>

## How the platform fits together

The platform is organized around two flows:

**Supply flow** - where you get secure artifacts:

* The **Image Catalog** and **Library Catalog** show what Root has available. You subscribe to images or configure your package manager to pull from Root's registries.
* [Getting Started with RIC](/ric/getting-started) and [Getting Started with RLC](/rlc/getting-started) cover the setup steps.

**Visibility flow** - where you monitor your security posture:

* **My Images** and **My Library** show what your organization is using and the CVE status of each.
* **Security Findings** is the central table of all vulnerabilities across your subscriptions.
* **CVE Details** lets you drill into any individual CVE to see affected assets, patch artifacts, and the agentic patching flow.
* The [Dashboard](/platform/dashboard) provides aggregate metrics and trends.

## Additional platform capabilities

**AI-driven malware checks** — Root runs AI-driven malware analysis on all packages it builds. This catches zero-day malware before it enters your supply chain — for example, compromised package versions like the axios attack are blocked from being built. Malware checks run automatically; no configuration is needed.

**Token Management** — Root supports org-level service tokens for programmatic access. Tokens are not tied to individual users, so pipelines don't break when someone leaves the team. Features include permission scoping (Admin, Member, Read-only), token naming, created-by visibility, last-used tracking, and optional expiration dates. Token management is available under **Settings** in the app sidebar.

<Info>
  Dedicated documentation pages for malware checks and token management are coming soon.
</Info>

## Navigation

<Frame caption="The Root app sidebar — primary nav for Dashboard, Security Findings, Libraries, and Images, with Patcher Flow, Settings, and help links at the bottom.">
  <img src="https://mintcdn.com/root-939307ed/HsOGaue3wrgiqHlE/images/platform-sidebar.png?fit=max&auto=format&n=HsOGaue3wrgiqHlE&q=85&s=9871570f81b6d12b2fff69c2a215fca5" width="256" height="1516" data-path="images/platform-sidebar.png" />
</Frame>

From the app sidebar:

* **Dashboard** - fleet-wide metrics
* **Security Findings** (labeled "Vulnerabilities" in some views) - the main CVE table
* **My Images** - your subscribed container images
* **My Library** - your discovered application and OS packages
* **Image Catalog** - browse all available images
* **Library Catalog** - browse all available packages