devtools: do not automatically commit reports with NEEDS_REVIEW status

vulntriage.sh currently automatically creates commits for reports with
UNREVIEWED and NEEDS_REVIEW statuses.

When we have NEEDS_REVIEW reports, rather than just submitting them
directly, we want to review them first until its status is REVIEWED. To
prevent accidental submission of NEEDS_REVIEW reports, vulntriage.sh
should be changed such that it only commits UNREVIEWED and REVIEWED
reports by default.

Change-Id: Ia93359cb6dd2668852eb94ec3c48019b96bc7b9f
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/721083
Reviewed-by: Ethan Lee <[email protected]>
Reviewed-by: Nicholas Husin <[email protected]>
LUCI-TryBot-Result: Go LUCI <[email protected]>

Author: nicholashusin

devtools/vulntriage.sh

@@ -12,7 +12,7 @@
 # 3. Installs the latest version of the 'vulnreport' tool.
 # 4. Runs 'vulnreport triage'.
 # 5. Runs 'vulnreport create'.
-# 6. Runs 'vulnreport commit' for UNREVIEWED and NEEDS_REVIEW statuses.
+# 6. Runs 'vulnreport commit' for UNREVIEWED and REVIEWED statuses.
 #
 # Options:
 #   --batch <size>:  Sets the batch size for commit operations (default: 20).
@@ -31,7 +31,7 @@ BATCH_SIZE=20
 TRIAGE=true
 CREATE=true
 COMMIT=true
-COMMIT_STATUSES=("UNREVIEWED" "NEEDS_REVIEW")
+COMMIT_STATUSES=("UNREVIEWED" "REVIEWED")
 BRANCH_NAME="vulnreport-update-$(date +%Y-%m-%d)"
 
 info() {