Currently, when patch_links are picked up from some Parsers, they are not injected in the patch_links of the Vulnerability Object. For example, if a GitHub commit is found to be closing an issue, we want to extract commit to be reported as patch_link instead of the issue. In order to do this, the Patch Object definition will be extended to also include an extra field patchUrl that carries this information safely.
Currently, when
patch_linksare picked up from some Parsers, they are not injected in thepatch_linksof the Vulnerability Object. For example, if a GitHubcommitis found to be closing anissue, we want to extractcommitto be reported aspatch_linkinstead of theissue. In order to do this, thePatchObject definition will be extended to also include an extra fieldpatchUrlthat carries this information safely.