Skip to content

Add dependency to location, generate compare key & message for DS

Fabien Catteau requested to merge ee-8656 into master

Changes to the issue package required for Dependency Scanning:

  • add dependency name & version to Location
  • generate compare key automatically when this is a DS vulnerability
  • introduce DependencyScanningVulnerability to customer JSON encoding
  • extract SASTVulnerability

It introduces a breaking change since SAST analyzers have to use SASTVulnerability in order to have the deprecated fields in the JSON output.

Issues:

Edited by 🤖 GitLab Bot 🤖

Merge request reports