Issue Sync
Overview
The issue sync procedure runs periodically every 6 hours and automatically updates the issues or work items created by the Mend.io repository integrations with changes originating from “non-scan” events.
Issue Sync Triggers
Any of the events listed below will trigger an issue sync for a project in the subsequent run:
Suppression of a CVE using the Mend AppSec Platform UI or API.
Introduction of a new CVE introduced for an existing library.
Removal of an existing CVE from an existing library.
Change in CVE score.
Issue Sync Throttling
To prevent throttling when a large number of projects get flagged for issue sync by the above triggers, a mechanism which splits the project list into partitions is embedded in the issue sync procedure, ensuring that the projects will get processed in smaller chunks and preventing potential throttling.