Design: Improve MR Experience for Secure Scans on Non-Ultimate Plans [PARENT]
Problem to solve
Today, non-Ultimate users can use SAST and Secret Detection, however the experience is very suboptimal. We should make it easy to see there are vulnerabilities and direct them to the Secure Artifacts.
Experience Today
Intended users
User experience goal
- Make it clear there are vulnerabilities while not giving away all the Ultimate features
Proposal
- Show colorized vulnerability numbers
- Directly link to the pipeline artifacts
-
Learn more
link in popover goes to Security & Compliance page for core users
MVC (this issue) | Post-MVC (future implementation; adds an "Download all artifacts" option) |
---|---|
Further details
Permissions and Security
These changes would ONLY apply to Core, Bronze, Silver users. The ultimate MR security widget would remain the same for Ultimate users and need to still have the correct security checks. This change simply provides a portion the Ultimate UI for non-ultimate users.
Documentation
Release notes
Availability & Testing
What does success look like, and how can we measure that?
What is the type of buyer?
Is this a cross-stage feature?
Links / references
Edited by Becka Lippert