From ee24895ef0f964ca4594475006a34574a592ef79 Mon Sep 17 00:00:00 2001 From: Manuel Sommer Date: Tue, 26 Aug 2025 09:14:31 +0200 Subject: [PATCH 1/2] :tada: Add fix_available to KrakenDAudit --- dojo/settings/settings.dist.py | 2 +- dojo/tools/krakend_audit/parser.py | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/dojo/settings/settings.dist.py b/dojo/settings/settings.dist.py index e8276c28c1..823fb0e9fd 100644 --- a/dojo/settings/settings.dist.py +++ b/dojo/settings/settings.dist.py @@ -1343,7 +1343,7 @@ def saml2_attrib_map_format(din): "Invicti Scan": ["title", "description", "severity"], "Checkmarx CxFlow SAST": ["vuln_id_from_tool", "file_path", "line"], "HackerOne Cases": ["title", "severity"], - "KrakenD Audit Scan": ["description", "mitigation", "severity"], + "KrakenD Audit Scan": ["description", "severity"], "Red Hat Satellite": ["description", "severity"], "Qualys Hacker Guardian Scan": ["title", "severity", "description"], "Cyberwatch scan (Galeax)": ["title", "description", "severity"], diff --git a/dojo/tools/krakend_audit/parser.py b/dojo/tools/krakend_audit/parser.py index 062c978e3c..0b1d53af85 100644 --- a/dojo/tools/krakend_audit/parser.py +++ b/dojo/tools/krakend_audit/parser.py @@ -29,6 +29,7 @@ def get_findings(self, file, test): mitigation=message, static_finding=True, dynamic_finding=False, + fix_available=True, ) findings.append(finding) return findings From 3cb19c7783937799a0e175a85c6039db527334dd Mon Sep 17 00:00:00 2001 From: manuelsommer <47991713+manuel-sommer@users.noreply.github.com> Date: Wed, 27 Aug 2025 00:28:03 +0200 Subject: [PATCH 2/2] Update settings.dist.py --- dojo/settings/settings.dist.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dojo/settings/settings.dist.py b/dojo/settings/settings.dist.py index 823fb0e9fd..e8276c28c1 100644 --- a/dojo/settings/settings.dist.py +++ b/dojo/settings/settings.dist.py @@ -1343,7 +1343,7 @@ def saml2_attrib_map_format(din): "Invicti Scan": ["title", "description", "severity"], "Checkmarx CxFlow SAST": ["vuln_id_from_tool", "file_path", "line"], "HackerOne Cases": ["title", "severity"], - "KrakenD Audit Scan": ["description", "severity"], + "KrakenD Audit Scan": ["description", "mitigation", "severity"], "Red Hat Satellite": ["description", "severity"], "Qualys Hacker Guardian Scan": ["title", "severity", "description"], "Cyberwatch scan (Galeax)": ["title", "description", "severity"],