Fill the Status column in the pipeline security dashboard
Why are we doing this work
Recently, with !61536 (merged) we started using the vulnerability_list.vue
component in the Pipeline Security Dashboard
. This list is backed by GraphQL and was already used in the Project
, Group
and Instance
. The status column in the pipeline security dashboard currently is displayed as empty (see the screenshot below). We need to fetch that data from GraphQL and display it. This issue contains a little backend work required as we'll need to define the status field in the GraphQL Resolver. Since it's (should be) minimal work, I'm not going to create a separate issue for the backend.
Steps to reproduce:
- Fork a repository (such as https://gitlab.com/gitlab-examples/security/security-reports/)
- Run the pipeline
- Enable the feature flag:
:pipeline_security_dashboard_graphql
- Go to Project > CI/CD > Pipelines > Your Pipeline > Security Tab
Relevant links
Implementation plan
-
backend Expose the state
field inee/app/graphql/types/pipeline_security_report_finding_type.rb
. The type of the field needs to beVulnerabilityStateEnum
. -
frontend Extend graphql/queries/pipeline_findings.query.graphql
so that it fetches the status column and make sure that theee/app/assets/javascripts/security_dashboard/components/vulnerability_list.vue
displays it. -
frontend Implement tests.
Edited by Savas Vedova