Log hashcode config not found

[valentijnscholten]

Recently when debugging a hash_code field config related issue I added this log line which could be helpful.

[dryrunsecurity]

DryRun Security Summary

The code change improves DefectDojo's deduplication functionality by introducing configurable settings for hash code computation, allowing organizations to customize the process while maintaining a fallback legacy algorithm for identifying and managing security findings.

Expand for full summary

Summary:

This code change is focused on improving the deduplication functionality within the DefectDojo
application. The key changes include the introduction of configurable settings for the hash code
computation, allowing the application to be tailored to the specific needs of the organization.
The code checks if the necessary configuration settings are defined, and if so, it uses those
values to determine the appropriate fields to use for computing the hash code and whether the
CWE field can be null. If the settings are not found, the code falls back to a legacy algorithm
for computing the hash code. The changes also include the use of a deduplicationLogger to log
debug and warning messages related to the hash code computation process.

From an application security perspective, these changes are a reasonable improvement to the
deduplication functionality of the DefectDojo application. Deduplication is an important feature
for managing and tracking security findings, as it helps to avoid duplicate entries and provides
a more accurate view of the security landscape. The use of configurable settings is a good
approach, as it allows the application to be tailored to the specific needs of the organization,
particularly if different types of security scans have different characteristics that require
different approaches to deduplication.

Files Changed:

• dojo/models.py: This file has been updated to improve the deduplication functionality
  within the DefectDojo application. The changes include the introduction of configurable
  settings for the hash code computation, allowing the application to be tailored to the
  specific needs of the organization. The code checks if the necessary configuration settings
  are defined, and if so, it uses those values to determine the appropriate fields to use for
  computing the hash code and whether the CWE field can be null. If the settings are not found,
  the code falls back to a legacy algorithm for computing the hash code. The changes also include
  the use of a deduplicationLogger to log debug and warning messages related to the hash code
  computation process.

Code Analysis

We ran 9 analyzers against 1 file and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Configured Codepaths Analyzer	2 findings

Overall Riskiness

🔴 Risk threshold exceeded.

We've notified @mtesauro, @grendel513.

View PR in the DryRun Dashboard.