Remove description on hash generation

Question

Remove description on hash generation

Opened this issue 3 years ago · 0 comments

What would you like to be added:
Today Horusec generate hash of vulnerability using the fields: "Code", "Line", "Details", "File", "CommitEmail".
I want to bring a proposal where we will remove the description(details), because when users make any contribution to the project in the descriptions it will make a breaking changes.

Like for example:
Currently the detail is "If you use TLS_v1 you are vulnerable". In the future we changed it to "If you use TLS_v2 you are vulnerable"

With this type of change it is very likely that we will have a new hash and consequently a breaking changes.

For this we open an ADR(Architectural Decision Records) where we will discuss what decision we will make and solutions that we will evaluate.

Follow this PR ZupIT/horusec-adr#2 and comment with us.