feat: add webview for security findings (!982) · Merge requests · GitLab.org / gitlab-vscode-extension · GitLab

Dheeraj Joshi requested to merge djadmin-security-webview into main Aug 08, 2023

Implements #715 (closed)

Description

Add a new WebView for Vulnerability findings and display the the following information for every finding:

title
description
severity

Screenshot

Steps to reproduce

When member of the project

Ask to be added as a developer or maintainer to https://gitlab.com/fernando-c/test-vs-code-security-reports/
Clone the project with vulnerability findings fernando-c/test-vs-code-security-reports!1 (closed)
Enable the feature flag in the cloned project in .vscode/settings.json

{
    "gitlab.featureFlags.securityScansFlag": true
}

git checkout master-patch-211c
Check for security findings in the current branch sidebar for the gitlab extension
Every security findings information should displayed correctly in the webview

When not a member of the project

Clone the project with vulnerability findings https://gitlab.com/svedova/gitlab-mr-widgets-demo NOTE this project is different from the project above
Enable the feature flag in the cloned project in .vscode/settings.json

{
    "gitlab.featureFlags.securityScansFlag": true
}

git checkout main-patch-2326 NOTE this is different than the branch in the steps above
Check for security findings in the current branch sidebar for the gitlab extension
You should see No Scans Found

Edited Aug 10, 2023 by Fernando Cardenas