René's URL Explorer Experiment

{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Retrieve DefectDojo finding ID from SecureCodeBox finding ID","articleBody":"## ➹ New Feature implementation request\r\n\r\n### Is your feature request related to a problem?\r\nAs a secureCodeBox user with DefectDojo integration I would like to know what DefectDojo finding was created for each secureCodeBox finding (and vice-versa).\r\n\r\nThis would be useful in a case where you create a custom hook which sends notifications for very specific finding cases with a link to the DefectDojo finding. DefectDojo's notification support is very limited. \r\n\r\n### Possible solutions\r\nThese are some possible solutions that I came up with. I'm very happy to hear any other solutions!\r\n\r\n1. It would make sense if the `unique_id_from_tool` field in the Finding model refers to SecureCodeBox's finding ID. Currently, however, the finding filters don't include this field yet (i.e. no way to get finding from the `unique_id_from_tool` field).  This field is already updated with DefectDojo's generic importer, but some other existing importers write their own unique id into it. We would need to patch the created findings after creation.\r\n2. The DefectDojo persistence provider updates the Minio finding so that it includes the DefectDojo finding ID.\r\n3. The DefectDojo persistence provider is a ReadAndWriteHook which writes a map of `SecureCodeBox ID` -\u003e `DefectDojo ID` back to the scan spec.\r\n","author":{"url":"https://github.com/EndPositive","@type":"Person","name":"EndPositive"},"datePublished":"2021-07-02T11:52:00.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":7},"url":"https://github.com/536/secureCodeBox/issues/536"}