Add dependency_path to dependency object (!46) · Merge requests · GitLab.org / security-products / Security Report Schemas · GitLab

Fabien Catteau requested to merge 227620-dependency-path into master Sep 07, 2020

What does this MR do?

Add iid, direct, and dependency_path fields to dependency object used by Dependency Scanning, Container Scanning schemas.

In a first iteration, this is to be used in the context of Dependency Scanning to show the path to a vulnerable dependency.

This addition to the Dependency Scanning report schema corresponds to the struct fields introduced in gitlab-org/security-products/analyzers/common!116 (merged).

This resolves gitlab-org/gitlab#229469 (closed)

Availability and Testing

Review and add/update tests for this feature/bug

Approvals

Edited Sep 11, 2020 by Fabien Catteau