joewitt commented on PR #9612: URL: https://github.com/apache/nifi/pull/9612#issuecomment-2578346137
Actually I guess it makes sense to not fail on vuln findings because it could often be unrelated to the PR itself unless we could make the scanning happen on any relevant nar to a PR which would be...difficult :) So perhaps instead leave it as you have it. THen we do a different change/PR that does a daily scan that would fail on new vluns? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
