fix: Missing VEX status mappings for resolved_with_pedigree and false_positive #2813
Kusari Inspector / Kusari Inspector
succeeded
Nov 6, 2025 in 21s
Security Analysis Passed
No security issues found
Details
Kusari Analysis Results:
✅ No Flagged Issues Detected
All values appear to be within acceptable risk parameters.
No pinned version dependency changes, code issues or exposed secrets detected!
Note
View full detailed analysis result for more information on the output and the checks that were run.
@kusari-inspector rerun - Trigger a re-analysis of this PR
@kusari-inspector feedback [your message] - Send feedback to our AI and team
See Kusari's documentation for setup and configuration.
Commit: a7f86b8, performed at: 2025-11-05T18:39:57Z
Found this helpful? Give it a 👍 or 👎 reaction!
Scan Results Summary
Code Files Analyzed
Total Files: 5
internal/testing/testdata/exampledata/cyclonedx-vex-false-positive.jsoninternal/testing/testdata/exampledata/cyclonedx-vex-resolved-with-pedigree.jsoninternal/testing/testdata/testdata.gopkg/ingestor/parser/cyclonedx/parser_cyclonedx.gopkg/ingestor/parser/cyclonedx/parser_cyclonedx_test.go
Dependency Files Analyzed
No dependency files were analyzed.
Scan Details
| Check Type | Status |
|---|---|
| SAST Analysis | ✅ Completed |
| Secret Scan | ✅ Completed |
| Misconfiguration Scan | ✅ Completed |
| Workflow Analysis | ⏭️ Skipped |
| Govulncheck | ✅ Completed |
Enabled Scan Configurations
| Scan Type | Enabled |
|---|---|
| GitHub Action Version Pinning | ✅ Enabled |
| Container Version Pinning | ✅ Enabled |
Loading