The fix_version_dependant, can be set together with a CVSS range.
"name": "sec_policy",
"description": "This is a security policy",
"type": "security",
"rules": [
{
"name": "sec_rule",
"criteria": {
"min_severity": "medium"
"fix_version_dependant": true,
},
"actions": {
"webhooks": [
"sec_webhook"
],
"block_download": {
"active": true,
"unscanned": true
},
"block_release_bundle_distribution": true,
"fail_build": true,
"notify_deployer": true,
"notify_watch_recipients": true
},
"priority": 1
}
]
}