Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🎉 add ALBA to vulnid #11487

Open
wants to merge 1 commit into
base: bugfix
Choose a base branch
from
Open

🎉 add ALBA to vulnid #11487

wants to merge 1 commit into from

Conversation

manuel-sommer
Copy link
Contributor

No description provided.

@github-actions github-actions bot added the settings_changes Needs changes to settings.py based on changes in settings.dist.py included in this PR label Jan 2, 2025
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Jan 2, 2025

DryRun Security Summary

The pull request updates DefectDojo's default configuration by adding a new vulnerability URL mapping for "ALBA" to link to the OSV website, enhancing users' access to vulnerability information.

Expand for full summary

Summary:

The code change in this pull request updates the default configuration settings for the DefectDojo application by adding a new vulnerability URL mapping for the "ALBA" vulnerability identifier. This change will allow the application to provide a direct link to the OSV (Open Source Vulnerabilities) website when users view findings related to the "ALBA" vulnerability.

From an application security perspective, this change is a positive improvement as it enhances the information available to users about specific vulnerabilities. Providing direct links to vulnerability databases and advisories can help security teams better understand the nature and impact of the identified issues. The change appears to be a routine update to the application's configuration settings and does not raise any immediate security concerns.

Files Changed:

  • dojo/settings/settings.dist.py: This file contains the default configuration settings for the DefectDojo application. The changes in this pull request add a new vulnerability URL mapping for the "ALBA" vulnerability identifier, which will link to the OSV (Open Source Vulnerabilities) website. This change is intended to provide more comprehensive vulnerability information to users when viewing findings related to the "ALBA" vulnerability.

Code Analysis

We ran 9 analyzers against 1 file and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

mtesauro
mtesauro approved these changes Jan 2, 2025
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Maffooch Maffooch Maffooch approved these changes

@mtesauro mtesauro mtesauro approved these changes

At least 4 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
settings_changes Needs changes to settings.py based on changes in settings.dist.py included in this PR
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@manuel-sommer @mtesauro @Maffooch