mkonda
commented
6 years ago Good call. I think we should add it too.
Closed thesp0nge closed 4 years ago
mkonda
commented
6 years ago Good call. I think we should add it too.
First of all, it's great having a standard for findings.
In my experience, I used also a 'priority' value to help developers during mitigation. I found that 'severity' can be sometimes misleading because of other circumstances