Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
Currently, the pull request comments functionality is great but not actionable as it points out the summary of how many issues and type of issues exist. It can be made super actionable by linking the summary to the actual issue so it would be possible to quickly take a look at the issues and resolve them. An even better flow would be if it would be possible to link specific issues from pull request to the specific issues in the report rather than the full report generically.
Currently, the pull request comments functionality is great but not actionable as it points out the summary of how many issues and type of issues exist. It can be made super actionable by linking the summary to the actual issue so it would be possible to quickly take a look at the issues and resolve them. An even better flow would be if it would be possible to link specific issues from pull request to the specific issues in the report rather than the full report generically.