Retain original reviewer and approver details in comments

[arpitkothari-hub]

Summary

When using the Veracode Mitigation Copier Plugin, the original reviewer and approver details are replaced by the service account details. For traceability and audit requirements, it is essential to retain the original details.

Enhancement Request

• Current Behavior: The original Reviewer and Approver details are replaced with the service account details when using the plugin.
• Desired Behavior: Add the original Reviewer and Approver details to the comments while copying the mitigations.
• Implementation Suggestion: Modify the plugin to extract and add the original reviewer and approver details to the comments section of the copied mitigations.
  Updating line:320 with the following code seems to add the original reviewer and approver correctly in the comment.

proposal_comment = '(COPIED FROM APP {}) {} | OriginalComment by {}'.format(from_app_guid, mitigation_action['comment'], mitigation_action['user_name'])

Impact

This enhancement will improve traceability and meet audit requirements by retaining the original reviewer and approver details within the comments.