-
Notifications
You must be signed in to change notification settings - Fork 555
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feat/update vuln urls to point to security.snyk.io #3448
Conversation
|
2d8ddf3
to
2fd7018
Compare
2fd7018
to
6128f25
Compare
1b5f3b2
to
3b5fcf7
Compare
@@ -41,7 +41,7 @@ export function notificationForSpotlightVulns( | |||
); | |||
|
|||
for (const vulnId of foundSpotlightVulnsIds) { | |||
message += ` - ${vulnId} (See https://snyk.io/vuln/${vulnId})`; | |||
message += ` - ${vulnId} (See https://security.snyk.io/vuln/${vulnId})`; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
issue(blocking): Whilst we're in this area can we switch to using the configuration value rather than a hard coded string?
For example:
message += ` - ${vulnId} (See https://security.snyk.io/vuln/${vulnId})`; | |
message += ` - ${vulnId} (See ${config.PUBLIC_VULN_DB_URL}/vuln/${vulnId})`; |
What does this PR do?
Updates URL links for vulns in the CLI output to point to security.snyk.io, the new snyk vulnerability db which generally has better UX and more info than the legacy site the links are currently pointing to.