Set finding id when ingesting sbom_occurrences_vulnerability records
What does this MR do and why?
Since a vulnerability can now be on multiple branches, we will need to use sbom_occurrences_vulnerabilities to link to the branch-specific findings. This MR sets vulnerability_occurrence_id on new records when creating them during the SBoM ingestion process.
sbom_occurrences_vulnerabilities records are also created during continuous vulnerability scanning, which will be updated in a different MR.
References
Relates to: #583615
Screenshots or screen recordings
| Before | After |
|---|---|
How to set up and validate locally
MR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Edited by Brian Williams