Create the standalone vulnerability list page
Problem to solve
We have created a standalone vulnerability page in #36739 (closed) but have no way of accessing the standalone vulnerabilities.
Eventually, they will be accessed on the security dashboard, but whilst we're still developing this feature, they need a temporary home.
Intended users
Further details
This page will need to be:
-
Behind the first_class_vulnerabilities
feature flag -
Accessible in the Security and Compliance
menu in the sidebar -
Available at the url, /[group]/[project]/-/security/vulnerabilities
Proposal
Since this is a temporary page, we can generate a simple paginated list in the rails controller, using HAML to render the result.
The alternative would be to render a new dashboard list in Vue, but there would need to be extra steps involved in linking the vulnerabilities and making sure all the bells and whistles of the dashboard worked correctly in this new context. For simplicity, we should start with the HAML version.
Permissions and Security
In order to see this page, the user will have to:
- Have an ultimate license
- Have access to the security dashboard
- Have the
first_class_vulnerabilities
feature flag enabled
Design
Example of standalone page (detected with solution available) |
---|
Documentation
This should require no documentation as it is a temporary page, hidden behind a feature flag.
What does success look like, and how can we measure that?
Success looks like a list of vulnerabilities that link to the appropriate vulnerability page.