storbeck
commented
1 week ago I have added this to the risk drawer if the finding exists in our threat feed. The underlined link goes directly to the risk in KEV (in the case of the screenshot, it is linked to https://nvd.nist.gov/vuln/detail/CVE-2002-0367)
Currently, it's hard-coded for KEV only because KEV is our only source. Once we add more, we can revisit the design and determine how it relates to various other sources.
Feature Description The drawer page of each risk would include the risk's source if it has one.
Problem This feature will make it easier to see that a finding is a KEV, etc.
Preferred Solution The risk drawer page includes a banner, icon, or other visual denoting the class.