Allow to filter vulnerabilities by image name on the project dashboard
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.
Problem to solve
Following the Design conclusion of Allow Container Scanning to scan multiple container images for a single change we want improve UX when multiple images are reporting Container Scanning findings (or vulnerabilities when dashboard gets converted to standalone vulnerabilities).
Intended users
Further details
Proposal
- Store the Docker image name for a pipeline in the database to allow the frontend to display a drop down menu enabling the user to filter the vulnerability results for a particular Docker image. In addition to storing the Docker image name in the database, we may need to add a new API call to allow the frontend code to retrieve these values. See Backend changes required for supporting UI for more details
- Implement the frontend UI changes to allow filtering the vulnerability results for a particular Docker image.
Implementation plan
- frontend sub-issue: #213991 (closed)
- backend sub-issue: #215468
Permissions and Security
Documentation
Availability & Testing
What does success look like, and how can we measure that?
What is the type of buyer?
Is this a cross-stage feature?
@matt_wilson this is relevant for Category:Vulnerability Management of groupthreat insights .