Update test project expectations when new vulnerability is published
Problem to solve
We constantly introduce new vulnerabilities into gemnasium-db as a result of this, our test project's expectations gets outdated constantly and it keeps our pipelines failing since fixture doesn't match with generated report by analyzer.
Desired behaviour
Whenever we new vulnerability merged into master related projects tests
Intended users
Further details
Proposal
We could leverage multi project pipeline feature of Gitlab and trigger a job to create MR in order to update expectations whenever we publish vulnerability. Example,
- New vulnerability merged into /gem folder
- Job is triggered for creating MR in ruby-bundler project
Permissions and Security
N/A
Documentation
N/A