feat(ecr_repositories_scan_vulnerabilities_in_latest_image): Minimum severity is configurable

[jfagoagas]

Context

Fixes #2535

Description

Included a new config parameter ecr_repository_vulnerability_minimum_severity to set a minimum severity level for the ecr_repositories_scan_vulnerabilities_in_latest_image check.

Now you can get a FAIL finding only if a CRITICAL vulnerability is present in your ECR repository image.

The default behaviour is to set MEDIUM as the base severity level.

License

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[codecov]

Codecov Report

Merging #2736 (27e1858) into master (8f091e7) will increase coverage by 0.01%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##           master    #2736      +/-   ##
==========================================
+ Coverage   86.05%   86.07%   +0.01%     
==========================================
  Files         526      526              
  Lines       17037    17044       +7     
==========================================
+ Hits        14662    14671       +9     
+ Misses       2375     2373       -2     

Files Changed	Coverage Δ
...positories_scan_vulnerabilities_in_latest_image.py	100.00% <100.00%> (ø)

... and 1 file with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more