Novel Tidelift Findings - 2078 (!1463) · Merge requests · Iron Bank / ironbank-pipeline

Matthew Scott requested to merge 2078-tidelift-findings into master Nov 19, 2024

Description

This MR supports adding a separate table for novel Tidelift findings (i.e. CVEs not identified by other scanners) to the Chore issue during the generate-chores job. Feature can be enabled with ENABLE_TIDELIFT_FINDINGS_IN_CHORE environment var.

Addresses issue 2078

Risk

Minimal risk. Novel Tidelift findings table is only populated if findings exist.

Rollback Plan

Remove the Novel Tidelift findings table from the Chores issue.

Testing

Trigger pipeline: https://code-ib-mario.staging.dso.mil/ironbank-tools/tools/trigger/-/pipelines/86003

Manual pipeline runs:
nodejs18 - ENABLE_TIDELIFT_FINDINGS_IN_CHORE enabled

UBI 9 RedHat - ENABLE_TIDELIFT_FINDINGS_IN_CHORE disabled

Edited Nov 20, 2024 by Matthew Scott

Novel Tidelift Findings - 2078

Description

Risk

Rollback Plan

Testing

Merge request reports