DataDog · piloulacdog · Oct 27, 2025 · Oct 24, 2025 · Oct 24, 2025 · Oct 26, 2025
@@ -241,21 +241,35 @@ SCA can be enabled on your running services using one of the following two metho
 
 To disable SCA, you must use the *same method* you used to enable SCA.
 
-**Note**: If you enabled SCA manually, you must disable it manually. You cannot disable it using the UI.
+{{< tabs >}}
+{{% tab "Enabled in the UI" %}}
+<div class="alert alert-danger">
+If you enabled SCA through the <code>DD_APPSEC_SCA_ENABLED</code> environment variable, you cannot disable it using the UI.
+</div>
 
 To disable SCA through the UI, you can:
 
-* Go to the [Code Security Setup page][17] and select **Activate runtime detection of library vulnerabilities"**. In this table, you can disable services that were previously activated.
+* Go to the [Code Security Setup page][1] and select **Activate runtime detection of library vulnerabilities"**. In this table, you can disable services that were previously activated.
 
 or
 
-* Go to [Services][15], select **Software Composition Analysis (SCA)**. Under **Coverage**, hover over a service's SCA icon and then click **Deactivate**.
+* Go to [Services][2], select **Software Composition Analysis (SCA)**. Under **Coverage**, hover over a service's SCA icon and then click **Deactivate**.
 * To disable Software Composition Analysis on your services in bulk, click the check box in the list header and then under **Bulk Actions** select **Deactivate Software Composition Analysis (SCA) on x services**.
 
-To disable SCA manually:
+[1]: https://app.datadoghq.com/security/configuration/code-security/setup
+[2]: https://app.datadoghq.com/security/code-security/inventory/services
+{{% /tab %}}
+{{% tab "Enabled using environment variable" %}}
+<div class="alert alert-danger">
+If you enabled SCA through the UI, you cannot disable it by removing the <code>DD_APPSEC_SCA_ENABLED</code> environment variable.
+</div>
 
 * Remove the `DD_APPSEC_SCA_ENABLED=true` environment variable from your application configuration, and restart your service. This does not apply to PHP applications.
 
+{{% /tab %}}
+
+{{< /tabs >}}
+
 ### Disabling Runtime Code Analysis (IAST)
 
 To disable IAST, remove the `DD_IAST_ENABLED=true` environment variable from your application configuration or set it to `false` as `DD_IAST_ENABLED=false`, and restart your service.
@@ -271,9 +285,7 @@ To disable IAST, remove the `DD_IAST_ENABLED=true` environment variable from you
 [9]: https://learn.microsoft.com/en-us/nuget/consume-packages/package-references-in-project-files#enabling-the-lock-file
 [12]: https://app.datadoghq.com/security/appsec/vm/library
 [13]: https://github.com/DataDog/datadog-static-analyzer/blob/main/doc/diff-aware.md
-[15]: https://app.datadoghq.com/security/code-security/inventory/services
 [16]: https://app.datadoghq.com/services?&lens=Security
-[17]: https://app.datadoghq.com/security/configuration/code-security/setup
 [18]: https://docs.github.com/en/repositories/working-with-files/managing-large-files/about-git-large-file-storage
 [19]: https://docs.datadoghq.com/security/code_security/software_composition_analysis/setup_static/?tab=datadog#running-options
 [20]: /security/configuration/code-security/setup?steps=iast