Giters

ZupIT / horusec

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

Home Page:https://horusec.io/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Horusec doesnt ignore severeties

cskita opened this issue · comments

commented

What happened:
Hi,
I tried using the "horusecCliSeveritiesToIgnore" flag to ignore INFO type vulnerabilities, but it didn't work.
I've tried defining this in three ways:

  • horusec-config.json > "horusecCliSeveritiesToIgnore": ["INFO"];
  • envioment variable > HORUSEC_CLI_SEVERITIES_TO_IGNORE="INFO";
  • flag > ignore-severity=INFO

What am I doing wrong?

What you expected to happen:
These vulnerabilities should not appear in the sonar output file.

How to reproduce it (as minimally and precisely as possible):
Send the flag to ignore INFO severeties

Anything else we need to know?:

Environment:

  • Horusec version (use horusec version): horuszup/horusec-cli:v2.3.0 and horuszup/horusec-cli:v2.9.0-beta.3
  • Operating System: using docker
  • Network plugin / Tool and version (if this is a network-related / tool bug):
  • Others: