🎉 Add fix_available information to blackduck binary analysis parser #12633 (#13236)

Author: manuel-sommer

dojo/tools/blackduck_binary_analysis/parser.py

@@ -96,12 +96,14 @@ def ingest_findings(self, sorted_findings, test):
                     component_version=i.version,
                     unique_id_from_tool=unique_finding_key,
                 )
-
                 if cvss_v3:
                     finding.cvssv3 = cvss_vectors
                 else:
                     finding.severity_justification = cvss_vectors
-
+                if i.latest_version:
+                    finding.fix_available = True
+                else:
+                    finding.fix_available = False
                 findings[unique_finding_key] = finding
 
         return list(findings.values())

unittests/tools/test_blackduck_binary_analysis_parser.py

@@ -22,26 +22,21 @@ def test_parse_one_vuln(self):
                     "instrument.dll: zlib 1.2.13 Vulnerable to CVE-2023-45853",
                     finding.title,
                 )
-
+                self.assertEqual(True, finding.fix_available)
                 self.assertIsNotNone(finding.description)
                 self.assertIsNotNone(finding.severity)
                 self.assertEqual("Critical", finding.severity)
-
                 self.assertIsNotNone(finding.component_name)
                 self.assertEqual("zlib", finding.component_name)
-
                 self.assertIsNotNone(finding.component_version)
                 self.assertEqual("1.2.13", finding.component_version)
-
                 self.assertIsNotNone(finding.file_path)
                 self.assertEqual(
                     "JRE.msi:JRE.msi-30276-90876123.cab:instrument.dll",
                     finding.file_path,
                 )
-
                 self.assertIsNotNone(finding.vuln_id_from_tool)
                 self.assertEqual("CVE-2023-45853", finding.vuln_id_from_tool)
-
                 self.assertIsNotNone(finding.unique_id_from_tool)
 
     def test_parse_many_vulns(self):