If we look at this issue from CVE-2020-26418, currently the PatchFinder is not able to find the three related merge requests because the merge_commit_sha of them is not provided in the response of the GitLab API.
The information is found in the sha field of the JSON response and should also be parsed.
If we look at this issue from CVE-2020-26418, currently the
PatchFinderis not able to find the three related merge requests because themerge_commit_shaof them is not provided in the response of the GitLab API.The information is found in the
shafield of the JSON response and should also be parsed.