Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Marking vulnerability as false positive #1189

Closed
sitraj opened this issue Dec 5, 2019 · 5 comments
Closed

Marking vulnerability as false positive #1189

sitraj opened this issue Dec 5, 2019 · 5 comments
Assignees
@ajinabraham
Labels
enhancement MobSF enhancements and feature requests

Comments

@sitraj
Copy link

sitraj commented Dec 5, 2019

Hi,

Thank you for writing this tool which helps to perform static security analysis of apk files. I would like to know, is it possible to mark any vulnerability/security issue as False positive in current implementation? If not, is it possible to add the functionality?

This way it will be easier to maintain the history of the application.
@sitraj sitraj added the enhancement MobSF enhancements and feature requests label Dec 5, 2019
@superpoussin22
Copy link
Collaborator

@phoenixadb time for a sonar connector ?

@superpoussin22
Copy link
Collaborator

Plugin is in progress and could arrive end of January

@ajinabraham ajinabraham mentioned this issue Dec 10, 2019
Open
96 tasks
@ajinabraham
Copy link
Member

enhancements are tracked separately

@kaczalapa
Copy link

Hello,
I want to refresh that issue and ask you when this feature can be implemented in your tool? I see it on TODO list on #264 but on the other hand you wrote that it is in progress half year ago. What is the status of this feature?

@ajinabraham
Copy link
Member

This is something we plan to do after we change the our SAST core and that will take some time. We don't have a timeline for this yet.

@ajinabraham ajinabraham mentioned this issue Mar 26, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ajinabraham ajinabraham

Labels
enhancement MobSF enhancements and feature requests
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@ajinabraham @sitraj @superpoussin22 @kaczalapa