rsenden
commented
11 months ago @young-s-park Is this still relevant, now that we focus more on Debricked? Also, since Debricked has its own CLI (and developing something similar to susceptibility analysis), wouldn't it be better to have people just use the Debricked CLI? (at least for now, until wel decide to have one consolidated CLI for both Fortify and Debricked)
This is a feature request to add support for running Sonatype scans. In addition to just running the Sonatype scan, maybe we can also incorporate some logic from the SourceAndLibScanner so that we can get Susceptibility Analysis results as well?