Multiple new report requirements #139
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: ywittmann <[email protected]>
Signed-off-by: ywittmann <[email protected]>
…-report # Conflicts: # libraries/ae-inventory-processor/src/main/java/org/metaeffekt/core/inventory/processor/patterns/ComponentPatternContributorRunner.java
Signed-off-by: ywittmann <[email protected]>
…iguration classes to use JSONArray when it comes to configuring the new ContentIdentifier values. Adjusted parsing logic accordingly. Signed-off-by: ywittmann <[email protected]>
…report' into AEAA-492-periodic-vulnerability-report
… score". Added logic for use in AEAA. Started integrating Lombok into data classes. AEAA-521: Added advisory statistics to report properties file. Signed-off-by: ywittmann <[email protected]>
Signed-off-by: ywittmann <[email protected]>
…ned (newly introduced in VR) priority score. - Added support for parsing and displaying EOL data, keywords data. - Fixed EPSS data not showing up in VR. Signed-off-by: ywittmann <[email protected]>
Signed-off-by: ywittmann <[email protected]>
Signed-off-by: ywittmann <[email protected]>
- fixed timezone issues in test cases. Signed-off-by: ywittmann <[email protected]>
Signed-off-by: ywittmann <[email protected]>
YanWittmann
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Related PRs:
Issues worked on in this PR:
AEAA-521 - VR: Include advisory generation timestamp
If an inventory contains at least one inventory enrichment step in the inventory info sheet under the
inventory-enrichment-->Stepssection, the following properties will be filled with the relevant values (otherwise empty):AEAA-512 - Redefine Priority Score
See the https://github.com/org-metaeffekt/metaeffekt-artifact-analysis/pull/37 PR for more details on calculation and configuration of the new priority score.
AEAA-522 - vulnerability detail ordering, vulnerability status sections as topics
Vulnerabilities are now ordered descending by CVE-Id and "affected", etc. are now displayed as topics in the toc.
AEAA-520 - Organize (summary) overview table by group
The Vulnerabilities by Asset table will now be split into (potentially) multiple tables, grouped by an
Asset Groupattribute in the Asset data. Unnamed Assets will be grouped into a genericOther Assetsgroup.with added assessment information will result in these three tables:
Another change: If no
Nameattribute is present on the Assets, it will now fall back to theAsset Idinstead of showing a blank string.