Support multiple auto-remediation patches when applying a vulnerability solution
Problem to solve
Vulnerabilities can have many remediations and remediations can have many vulnerabilities, however our current auto remediation feature will apply only the first remediation to a given vulnerability. This should be improved so when multiple patches can be applied in the future we can do so without requiring updates to our backend and frontend code.
This is future-proofing as our existing logic does not produce multiple patches for a given remediation.
Sasha, Software Developer, https://about.gitlab.com/handbook/marketing/product-marketing/roles-personas#sasha-software-developer
- Discussion on association vulnerabilities with the first matching remediation: !9326 (comment 145441462)
- update frontend from
- update backend report parser from
- update backend create MR service to apply all relevant patches, not just first (
What does success look like, and how can we measure that?
If a vulnerability is resolvable via two separate remediation patches, we should apply both to the vulnerability solution.