Exclude suppressions reported by semgrep in the artifact
What does this MR do?
- Includes
suppressions
property during.sarif
file serialization. - Skips to include the finding in the artifact if a sarif result has
suppressions
array property. However, if one of the array elements in thesupressions
hasstatus
property value asunderReview
orrejected
, the finding will be included in the artifact.
What are the relevant issue numbers?
gitlab-org/gitlab#344616 (closed)
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests added for this feature/bug -
Job definition updated, if necessary -
Ensure the report version matches the equivalent schema version -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Vishwa Bhat