The SEVERITY_ORDER map is duplicated across 5 different files and the copies have drifted in two different ways.
- in 2 places (
enrich, export) the rank of MEDIUM and HIGH_BUG are swapped compared to others.
sandbox/partitioner.ts is missing LOW for the --min-severity filter which is its own bug, meaning any --min-severity threshold above LOW still includes LOW findings.
The Severity type itself lists CRITICAL | HIGH | MEDIUM | HIGH_BUG | BUG | LOW which I assume is the intended order.
The
SEVERITY_ORDERmap is duplicated across 5 different files and the copies have drifted in two different ways.enrich,export) the rank ofMEDIUMandHIGH_BUGare swapped compared to others.sandbox/partitioner.tsis missingLOWfor the--min-severityfilter which is its own bug, meaning any--min-severitythreshold above LOW still includes LOW findings.The
Severitytype itself listsCRITICAL | HIGH | MEDIUM | HIGH_BUG | BUG | LOWwhich I assume is the intended order.