Consider dismissed items in security reports summary: Pipeline and Project security dashboard
Description
We should probably update the counters in the Security Reports summary and headers in the pipeline and project security dashboard to reflect the dismissed issues...
If all the remaining vulnerabilities are dismissed it doesn't sound right to show Security scanning detected 5 vulnerabilities
.
Proposal
Use this language on the summary and headers:
Pipeline Security Report and Project Level Dashboard
SAST detected 3 vulnerabilities and 2 dismissed vulnerabilities
Solution:
- Add
X dismissed vulnerabilities
or, X dismissed,
depending on location, to the string in security reports and the MR widget. - Group dismissed vulnerabilities and place them at the bottom of the lists for each report type.
- Follow-up with this design proposal: https://gitlab.com/gitlab-org/gitlab-ee/issues/8960 to better display dismissed vulnerabilities in the reports.
Security scanning detected X new, Y dismissed and Z fixed vulnerabilities.
Design:
Security Reports
With 0 dismissed | With 1 dismissed | With all dismissed |
---|---|---|