Merge pull request #177 from tatlax3636/master

Update pom.xml, display cvss3 results for library_policy audit

Author: aswink19

pom.xml

@@ -4,7 +4,7 @@
     <artifactId>api-audit</artifactId>
     <packaging>jar</packaging>
     <name>${project.groupId}:${project.artifactId}</name>
-    <version>3.7.26-SNAPSHOT</version>
+    <version>3.7.27-SNAPSHOT</version>
     <description>Hygieia Audit Rest API Layer</description>
     <url>https://github.com/Hygieia/${repository.name}</url>
 
@@ -60,7 +60,7 @@
         <repository.name>api-audit</repository.name>
 
         <!-- Dependencies -->
-        <com.capitalone.dashboard.core.version>3.15.38</com.capitalone.dashboard.core.version>
+        <com.capitalone.dashboard.core.version>3.15.42</com.capitalone.dashboard.core.version>
         <spring-security.version>4.2.18.RELEASE</spring-security.version>
         <spring.cloud.version>1.3.1.RELEASE</spring.cloud.version>
         <tomcat.version>8.5.70</tomcat.version>

src/main/java/com/capitalone/dashboard/evaluator/LibraryPolicyEvaluator.java

@@ -85,6 +85,7 @@ private LibraryPolicyAuditResponse getLibraryPolicyAuditResponse(CollectorItem c
             //threats by type
             Set<LibraryPolicyResult.Threat> securityThreats = !MapUtils.isEmpty(returnPolicyResult.getThreats()) ? returnPolicyResult.getThreats().get(LibraryPolicyType.Security) : SetUtils.EMPTY_SET;
             Set<LibraryPolicyResult.Threat> licenseThreats = !MapUtils.isEmpty(returnPolicyResult.getThreats()) ? returnPolicyResult.getThreats().get(LibraryPolicyType.License) : SetUtils.EMPTY_SET;
+            //Set<LibraryPolicyResult.Threat> securityCVSS3Threats = !MapUtils.isEmpty(returnPolicyResult.getThreats()) ? returnPolicyResult.getThreats().get(LibraryPolicyType.Security_cvss3) : SetUtils.EMPTY_SET;
 
 
             boolean isOk = true;