馃帹 Design: DAST Profile Updates
Problem to solve
After completing some recent research initiatives we've learned that there are a few notable pain points throughout the DAST configuration UI. In preparation for DAST to reach Complete maturity by the end of FY23-Q1, we'd like to address some of those problematic areas. This issue will focus on proposed improvements to DAST profiles.
As it stands today, the current profile experience is largely tied to DAST. Because of this, we shouldn't completely ignore them while making improving the DAST config UI. By updating the profile configuration experience to better align with the upcoming DAST changes, we can provide a more cohesive user experience and position profiles so that they can be more easily scaled to other security tools in the future.
In an effort to keep improvements focused on the DAST configuration UI, the proposed changes to profiles will be kept to a minimum for now.
Proposal
Summary of changes:
- Move profile management outside of DAST CI/CD configuration, giving them their own page and info cards within the security configuration area. Being that profiles are used for both CI/CD and On-demand scanning, moving them outside of the CI/CD configuration area may be more logical. This will also position profiles to be more easily scaled to other security tools.
- Update design of profile details management area to align with DAST design updates