Skip to content

Design: Vulnerability Details drawer

Delivery ask

Implement a sidebar to improve the experience

Background

This issue is meant to discuss and implement the MVC for the Vulnerability drawer design following Product discovery for Inline vulnerability management

Design

In MR
in-MR
In Pipeline view

Primary cases:

No activity Issue created Dismissed Solution available
no-activity with-issue-created dismissed solution-available-dropdown

Dismissing with comment

Initial dismissal Error state
dismissing-with-comment dismissing-with-comment-error

Adding comment after vuln was dismissed

Initial state - dismissed Adding comment Comment added
dismissed dismissed-adding-comment-later dismissed-with-comment

Solution available: Button Detail

Resolve with MR (Default) header
solution-available-button-dropdown solution-available-button-dropdown-patch

👉 Design Specifications

Task checklist:

  • Remove vuln modals in the Pipelines report, MR security report, Project dashboard, and Group dashboard.
  • Develop drawer UI as specified
    • Make changes to dismissal interaction as specified
  • Replace modals with drawer-design that opens when clicking on the vulnerability list item.
    • Add active list item background to selected vulnerabilities as specified
Edited by Andy Volpe