Merge branch 'russell/note-security-code-scan-levels' into 'master'

Note security-code-scan error levels See merge request gitlab-org/gitlab!80690

Merge branch 'russell/note-security-code-scan-levels' into 'master'
Note security-code-scan error levels See merge request gitlab-org/gitlab!80690
8b987b04 · Evan Read · c8f3eeb3 · 951e99f2 · 8b987b04
Commit 8b987b04 authored Feb 17, 2022 by Evan Read
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

doc/user/application_security/vulnerabilities/severities.md doc/user/application_security/vulnerabilities/severities.md +3 -3

No files found.
--- a/doc/user/application_security/vulnerabilities/severities.md
+++ b/doc/user/application_security/vulnerabilities/severities.md
@@ -35,9 +35,9 @@ the following tables:

 ## SAST

-|  GitLab analyzer                                                                                       | Outputs severity levels? | Native severity level type | Native severity level example      |
-|--------------------------------------------------------------------------------------------------------|--------------------------|----------------------------|------------------------------------|
-| [`security-code-scan`](https://gitlab.com/gitlab-org/security-products/analyzers/security-code-scan)     | **{check-circle}** Yes   | N/A                        | Hardcodes all severity levels to `Unknown` |
+|  GitLab analyzer                                                                                         | Outputs severity levels? | Native severity level type | Native severity level example      |
+|----------------------------------------------------------------------------------------------------------|--------------------------|----------------------------|------------------------------------|
+| [`security-code-scan`](https://gitlab.com/gitlab-org/security-products/analyzers/security-code-scan)     | **{check-circle}** Yes   | String                     | `CRITICAL`, `HIGH`, `MEDIUM` in [analyzer version 3.2.0 and later](https://gitlab.com/gitlab-org/security-products/analyzers/security-code-scan/-/blob/master/CHANGELOG.md#v320). In earlier versions, hardcoded to `Unknown`. |
 | [`brakeman`](https://gitlab.com/gitlab-org/security-products/analyzers/brakeman)                         | **{check-circle}** Yes   | String                     | `HIGH`, `MEDIUM`, `LOW`            |
 | [`sobelow`](https://gitlab.com/gitlab-org/security-products/analyzers/sobelow)                           | **{check-circle}** Yes   | N/A                        | Hardcodes all severity levels to `Unknown` |
 | [`nodejs-scan`](https://gitlab.com/gitlab-org/security-products/analyzers/nodejs-scan)                   | **{check-circle}** Yes   | String                     | `INFO`, `WARNING`, `ERROR`         |