-
Notifications
You must be signed in to change notification settings - Fork 1.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
summarizing multiple similar findings into problems #11432
base: dev
Are you sure you want to change the base?
Conversation
Bumps [nanoid](https://github.com/ai/nanoid) from 3.3.7 to 3.3.8. - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.7...3.3.8) --- updated-dependencies: - dependency-name: nanoid dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
DryRun Security SummaryThe GitHub Pull Request introduces a new "Problem" concept in the Dojo application to enhance security management by mapping security findings to specific vulnerabilities, improving tracking, reporting, and prioritization of security issues. Expand for full summarySummary: The changes in this GitHub Pull Request are focused on enhancing the security management and tracking capabilities of the Dojo application. The key changes include:
Files Changed:
Overall, the changes in this Pull Request appear to be a significant step forward in enhancing the security management and tracking capabilities of the Dojo application. The introduction of the "Problem" concept and the associated functionality provide a more structured and comprehensive approach to managing security issues, which can lead to improved prioritization, remediation, and overall security posture of the application. Code AnalysisWe ran
Overall Riskiness🔴 Risk threshold exceeded. We've notified @mtesauro, @grendel513. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The most important comments are changing some of the algorithms to have better asymptotic performance.
Description
We created a "Problems" tab that disambiguates similar findings based on the script_id that detected them. This allows us to consolidate most findings into a single problem, enabling the vulnerability analyst to more accurately identify all types of issues without duplication.
A bug in the OpenVAS XML parser has been fixed, where it was not correctly identifying the script_id and was always returning None.
Test results
We tested the creation and association of findings to a specific problem according to the JSON file we provided, which already identifies similar findings by grouping them based on their script_id. We also tested that after creating the findings and problems, deleting a finding would update the problem by reducing the number of associated findings, and if all findings related to a problem were deleted, the problem would be automatically removed. Additionally, we verified the logic where if all findings become inactive, the problem status changes from open to closed, and if at least one finding remains active, the problem stays open.