Skip to content

Feature Request: Individual Finding Exclusions #90

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Conklin-Spencer-bah opened this issue Sep 4, 2024 · 2 comments
Open

Feature Request: Individual Finding Exclusions #90

Conklin-Spencer-bah opened this issue Sep 4, 2024 · 2 comments
Labels
Backlog Task is in the backlog, but not being worked on currently. enhancement New feature or request

Comments

@Conklin-Spencer-bah
Copy link

Description

Instead of skipping entire files it would be nice if there was a way to skip individual findings based on an exception. This could be done either by passing in command line arguments or having a file such as a .exceptions file containing a list of libraries to ignore.

Expected Behavior

Pass individual packages and or vulnerabilities with them based on a commandline argument.

Actual Behavior

Right now the exception process ignores all of the packages in the sbom if you specify it. There are cases where only a single package in the file needs to have an exception.
@bluesentinelsec bluesentinelsec added the enhancement New feature or request label Sep 6, 2024
@bluesentinelsec
Copy link
Contributor

Hello, thank you for the feature request.
We understand your workflows would be improved by being able to exclude individual findings.
We will add your feature request to our backlog.
I cannot offer an ETA as to when this work would begin; however, this is a topic that we discuss regularly.
We also welcome contributions if anyone from the community wishes to help.

@bluesentinelsec bluesentinelsec changed the title Individual Finding Exception Feature Request Feature Request: Individual Finding Exclusions Sep 6, 2024
@bluesentinelsec bluesentinelsec added the Backlog Task is in the backlog, but not being worked on currently. label Sep 6, 2024
@job-deleij
Copy link

Hi,

Could you provide an update on the status of the feature request please? This Action is exactly what we're looking for, but this specific feature not being supported is the reason that's keeping us from actually using it. We tried suppressing specific CVEs using the Inspector console in AWS but this Action doesn't take it into account.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Backlog Task is in the backlog, but not being worked on currently. enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@bluesentinelsec @job-deleij @Conklin-Spencer-bah