Add scanned resources back to DAST security summary

DAST scanned resources were being used by Pipeline Security Summary and Grouped Security Reports.

They had been removed temporarily until #322349 (closed) is resolved.

Implementation Plan

Add scannedResources and scannedResourcesCount back to:

• Pipeline Security Summary
  • Disabled in !54255 (merged)
• MR grouped security reports
  • Disabled in !61551 (merged)

GraphQL changes

diff --git a/ee/app/assets/javascripts/security_dashboard/graphql/queries/pipeline_security_report_summary.query.graphql b/ee/app/assets/javascripts/security_dashboard/graphql/queries/pipeline_security_report_summary.query.graphql
index a5275361fe8..1357d6053af 100644
--- a/ee/app/assets/javascripts/security_dashboard/graphql/queries/pipeline_security_report_summary.query.graphql
+++ b/ee/app/assets/javascripts/security_dashboard/graphql/queries/pipeline_security_report_summary.query.graphql
@@ -5,14 +5,13 @@ query($fullPath: ID!, $pipelineIid: ID!) {
         dast {
           vulnerabilitiesCount
           scannedResourcesCsvPath
+          scannedResourcesCount @include(if: $flagEnabled)
+          scannedResources @include(if: $flagEnabled) {
+            nodes {
+              requestMethod
+              url
+            }
+          }
         }
         sast {
           vulnerabilitiesCount

added Category:DAST devopssecure featureenhancement frontend groupdynamic analysis typefeature labels

mentioned in issue #238951 (closed)

marked this issue as related to #238951 (closed)

added sectionsec label

marked this issue as related to #322349 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2040 (closed)

added to epic &3728 (closed)

added workflowblocked label

set weight to 1

mentioned in epic &3728 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2106 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2216 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2308 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2375 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2482 (closed)

mentioned in issue gitlab-org/quality/triage-reports#2530 (closed)

changed milestone to %Next 1-3 releases

changed title from {-Pipeline Security Summary - Enable -}scanned{-R-}esources{- and scannedResourcesCount-} to Add scanned resources back to security summary

set weight to 2

changed the description

changed title from Add scanned resources back to security summary to Add scanned resources back to DAST security summary

There's a related (follow-up) issue to roll out the changes behind a feature flag - #331066 (closed)

marked this issue as related to #331066 (closed)

changed the description

mentioned in issue #331066 (closed)

Added feature-flag suggestion from #331066 (closed).

mentioned in issue #338217 (closed)

mentioned in merge request !70280 (merged)

It has all the necessary implementation plan but it's currently blocked by #322349 (closed).

So removing the milestone for now.

removed milestone %Next 1-3 releases

unassigned @djadmin

@derekferguson Moving to backlog since its blocked by another issue in the backlog.

changed milestone to %Backlog