Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results
2.64k
stars
318
forks
source link
Use Brakeman fingerprints for vulnerability deduplication #153
Closed
presidentbeef closed 7 years ago
This change stores and uses the warning fingerprints provided by Brakeman for deduplication. This is a little more reliable than the current method.
For existing warnings, it falls back on comparing type, severity, file, and line number. For duplicates, it adds the fingerprint after matching.