By default, Security for Confluence automatically scans new and updated content. Scanning is triggered for newly created spaces and extends to other content, including all new or updated pages and blog posts within previously scanned spaces.
The automatic scanning status of a space can be seen in its Security Analysis:
Auto-scanning can be disabled by a Confluence administrator. Simply visit the Settings Page and toggle the “Keep space scans up-to-date” switch.
Only Confluence administrators have access to these settings.
If auto-scanning is changed, reloading the Security Analysis will reflect the change.
Note that users performing a space import, or a cloud migration will have to manually scan spaces created from these processes.