SQ 8.6.0 Community
Trying to resolve a set of issues false positive with a custom tag. One issue looks like this (when the object returned by issues/search is viewed in powershell:
...
status : REOPENED
message : 'PASSWORD' detected in this expression, review this potentially hard-coded credential.
effort : 30min
debt : 30min
author :
tags : {cert, cwe, owasp-a2, sans-top25-porous}
...
So 4 tags. Then I call issues/bulk_change with the following parameters: ‘issues’ set to the comma-separated issue key list, ‘do_transition’ set to ‘falsepositive’, ‘add_tags’ set to ‘cstm.icc’, and -comment set to a string. On a new call to issues/search on the relevant rule, the same issue looks like this:
...
flows : {}
resolution : FALSE-POSITIVE
status : RESOLVED
message : 'PASSWORD' detected in this expression, review this potentially hard-coded
credential.
effort : 30min
debt : 30min
author :
tags : {cert, cwe, owasp-a2, sans-top25-porous}
...
So the resolution was applied, but not the tag (there are still 4, and my custom tag isn’t there).
I’m able to loop through the keys and call issues/set_tags one-by-one with a tag list consisting of the original 4 tags plus my new one, and now the tags are there:
...
author :
tags : {cwe, cert, sans-top25-porous, cstm.icc...}
transitions : {reopen}
...
> $passes6[0].tags
cwe
cert
sans-top25-porous
cstm.icc
owasp-a2