Hi @feroz, thanks for the ping!
We discussed this on our Jan 30 livestream: January 30th | Open Source Gardening | Live Stream
I think, in short:
- We would love to see a
--severity-cutoff mediumto drop vulnerabilities ofmediumor below. We haven’t reached final decision of other aspects of the UX, but having a CLI option to ignore vulnerabilities that aren’t severe enough seems like a great first step. - No one is presently assigned to pick up this work in the near term. We’d love a PR, or we will try to get to it.