Yarn Audit

Import Yarn Audit scan report in JSON format. Use something like yarn audit --json > yarn_report.json.

Sample Scan Data

Sample Yarn Audit scans can be found here.

Default Deduplication Hashcode Fields

By default, DefectDojo identifies duplicate Findings using these hashcode fields:

  • title
  • severity
  • file path
  • vulnerability ids
  • cwe