MarioVilas
commented
11 years ago Fixed in the text report. Still need confirmation for the HTML report.
Closed MarioVilas closed 11 years ago
MarioVilas
commented
11 years ago Fixed in the text report. Still need confirmation for the HTML report.
This is currently not affecting us since we're only producing vulnerabilities for resources, but we should fix the reporters since we'll want vulnerabilities to be associated to informations or anything else.
Note that I've only seen this in the text report. I think the HTML report is fine, but I'd like you to confirm it.
There's the question of whether we want unassociated vulnerabilities to be shown or not.
Maybe we should just so we don't lose information in case of a plugin error - normally this use case would make no sense, but plugin developers might forget to associate the vulnerability, and may be surprised then not to see the vulns in the report.
Another option is to throw an error message when a plugin returns a vuln with no associations at all.