The recent Security Hotspots feature is one that I would like to use as part of our Pull Request process; however, the only branch where the Security Hotspots can be viewed is our project’s master branch (a.k.a. post merge of a PR).
Ideally I would like to have PR reviewers able to see all Security Hotspots that are a part of the changed portions of the feature branch and make assessments on all of them prior to approval and merge to master.
When viewing any branch results other than master the Security Hotspots filter is greyed out.
Is there a setting that I’m missing to enable Security Hotspots for review on feature and merge branches?