Document how we normalize Scanner's severity values
Problem to solve
It is unclear how we normalize our Severity values from the raw data provided by the different Scanner we integrate.
Intended users
devopssecure team members
User experience goal
As a Secure team member, I want to better understand how we generate the severity values of the reported findings.
Proposal
Adds a new technical doc under https://about.gitlab.com/handbook/engineering/development/secure/tech-docs/ to explain how we do the severity mapping.
This should contain a generic description of the process and then a breakdown per analyzer, with a link to the corresponding source code.