STO Override Results Ranking
next fiscal quarter
J
Jade Crocodile
Based off our environment, sometimes we want the ability to override how the results are scored or ranked(Critical/High/Medium/Low). It would be fine if it worked at the project level to start and per scanner of course. We noticed and specifically need it for CheckmarxOne scanner system which only uses high/medium/low for ranking. Thank you.
Log In
Pritesh Chandaliya
next fiscal quarter
S
Sophie Manum
Jade Crocodile from PC: I will be doing Q2 planning and once we have all the details I can update that here. Q2 planning will be done on April 15th.
Pritesh Chandaliya
Talked to the VSX team, and they would like to override the severity of the issues and retain the values which we get directly from Checkmarkxone.
J
Jade Crocodile
Let me check with my team. I will update shortly. Thank you.
Pritesh Chandaliya
Hello Nathan,
Can you please provide more context on the requirements.
Which of the below workflow are you expecting?
- User overrides the severity on Checkmarkx side, ingest the vulnerability data into Harness, show the overridden severity here on Harness across the console on issues, exemptions, dashboard, etc.
- User ingest the vulnerability data from Checkmarkx into Harness, user overrides the severity on Harness (new feature), show the overridden severity here on console including on pages - issues, exemptions, dashboard, etc.
Thanks, and open to chat!