Do not mark generic vulnerabilities as "resolved on default branch" (!90156) · Merge requests · GitLab.org / GitLab

Mehmet Emin INAC requested to merge 348586_do_not_mark_manually_created_vulnerabilities_as_resolved into master Jun 14, 2022

What does this MR do and why?

Generic vulnerabilities are manually created, therefore, they will be always missing in pipeline security reports so we should not mark them as "resolved on default branch".

Related to #348586 (closed).

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Do not mark generic vulnerabilities as "resolved on default branch"

What does this MR do and why?

MR acceptance checklist

Merge request reports