Test and Verify "Fixed by FCV" and "Vuln export" Issues are addressed
Purpose
Standalone Vulnerabilities (aka First Class Vulnerabilities or FCV) is a large piece of work touching many different features. Multiple Issues and defects exist that are expected to be resolved with the release of standalone vulnerabilities to production. This will serve as a single source to identify all such issues and track their resolution status.
Issues Resolved by Standalone Vulnerabilities
-
Security dashboards do not update when all vulnerabilities are fixed
-
acceptance testing complete -
fix verified
-
-
Improve security dashboards' performance
-
acceptance testing complete -
fix verified
-
-
Vulnerabilities reported in the pipeline do not show on the security dashboards
-
acceptance testing complete -
fix verified
-
-
Security Dashboard is empty if security job fails
-
acceptance testing complete -
fix verified
-
-
Dashboard metrics should show 0 value when analyze ran but reported no vulnerabilities
-
acceptance testing complete -
fix verified
-
-
The group vulnerability chart shows a wrong vulnerability count
-
acceptance testing complete -
fix verified
-
-
Discrepancy between group's projects API and group vulnerabilities endpoint
-
acceptance testing complete -
fix verified
-
-
Vulnerabilities are reported multiple times in the same report
-
acceptance testing complete -
fix verified
-
Edited by Thiago Figueiró