2021-10-20 Recently delivered features and high-priority bugs
Hi, @thiagocsf.
Here is the list of features and high-priority bugs delivered in the last 7 days.
Please copy the list to the Sec Section weekly meeting agenda, and close this issue.
- Investigate count miss-match on dast benchmark cve 89
- Vulnerability management tool that allows user to upgrade or downgrade severities without needing to commit code to repositories
- Speed: Add integration tests using Runner Service
- (confidential)
- (confidential)
- Allow filtering out of dev dependencies
- Determine if manual Vulnerability creation mutation should respect security scanners schema
- (confidential)
- refactor
Finding
so each column is explicitly saved - Fix Security features tables cross-joining
ci_builds
-> Remove[analyzer]_pipeline
metrics join to ci_builds - Follow-up from "Simplify Gcs::Converter.convert"
- Reschedule RecalculateVulnerabilitiesOccurrencesUuid for all findings to rectify UUIDv5
- Fix flaky vulnerability E2E test
- Engineering discovery: Data need to be stored for dependencies information on the way to Database
- Implement search in DAST profiles using graphql - Frontend
- Do not convert report types to camelCase on frontend
- Deduplicate security_reports Vuex modules
- Add security_reports Vuex store integration tests
- Show dependency path of component in vulnerability page
- Update Analyzers Common Library README to include current scanner details
- Export dependency list to (partial) SPDX / SWID
- Show the detailed status of security testing in the merge request
Job URL: