In Artifactory in the security and license issues graph we still show Minor, Major and Critical severities, even though these severities are now called Low, Medium and High in Xray (Unknown is still Unknown).
Starting from Xray 2.6, if you add to the endpoint POST api/v1/artifactViolations the query param "new_severities=true" then Xray will return the new severities of security and license issues for the graph.
So the fix on Artifactory should be:
- Adding the query param "new_severities=true" to the Xray endpoint POST api/v1/artifactViolations
- Support both severities options for old and new Xray - Artifactory needs to identify if it got from Xray the severities Low, Medium and High or Minor, Major and Critical and add colors to the graph according to the issue severity.