Design: Vulnerability export report reflects current vulnerability list filters

Release notes

Problem to solve

The current CSV export report available on Vulnerability Report pages always includes all vulnerability records for the project or group and does not reflect the list of vulnerabilities as displayed in the UI. By not having an option to generate the CSV to match the currently-applied filters, users have much more manual work to weed out results they don't care about. As one example, over a longer period of time, many projects will continue to gather more and more Resolved vulnerabilities. If all you care about are what are still open, these Resolved vulnerabilities in the CSV export become noise to filter out.

We've also heard users wanting a more human-readable format, such as PDF.

Proposal

1. Turn the existing Export button into a selection option. When the user clicks the button, they will be able to chose between two options:

• Export all vulnerability records
• Export to match the current filters

(This is does not need to be the exact text.) The first option behaves exactly the same as the report export does today. The second option will only export vulnerability records that match what is currently displayed in the vulnerability list.

This new export behavior will be available on Project, Group, and Security Center Vulnerability Reports.

2. Offer both CSV and PDF formats.