Vulnerability management tool that allows user to upgrade or downgrade severities without needing to commit code to repositories
In order to better manage the vulnerability report, risk/security administrators need the ability to upgrade or downgrade the severity of a vulnerability. Currently this is done through a code commit rather than through the Vulnerability Report itself.
Release notes
Problem to solve
The security operations engineer is trying to downgrade/upgrade the severity of a vulnerability without spending time doing this through a code change (I'm not sure exactly how the customer does this today, they simply said "controls to upgrade or downgrade severities without needing to commit code to repositories").
Proposal
The customer should have the ability to re-classify vulnerabilities through the Vulnerability Report dashboard.
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.