[Spike] Investigate strategies for a migrating Vulnerability-Check rules
Why are we doing this work
When the time comes for removing the existing Vulnerability-Check (i.e., %15.0) then the documentation need to clarify to the user how to transition to the new feature in two possible ways (to be decided further down the road).
This issue has the aim to finding strategies for the following scenarios:
-
Projects that contain neither a vulnerability-check rule nor a Security Policies project -
Projects that contain a vulnerability-check rule but no Security Policies project -
Projects that don't contain a vulnerability-check rule but does contain a Security Policies project -
Projects that contain both a vulnerability-check rule and a Security Policies project
Relevant links
Vulnerability-Check
Scan result policy
Non-functional requirements
-
Documentation: -
Feature flag: -
Performance: -
Testing:
Implementation plan
Edited by Zamir Martins