Improve UI feedback for container scan results
Proposal
When a container-scanning CI job returns exit code 0, the UI displays a green checkmark. This behavior can be misleading to development teams, as they interpret a green check mark to mean that no vulnerabilities were found, rather than the fact that the job was run successfully but may still have security issues.
- If the security tool ran successfully, and no vulnerabilities were found, display a green check mark in the UI.
- If the security tool ran successfully, but found vulnerabilities, display a warning icon in the UI. Vuln data should be imported into the security dashboard. If the allow_failure flag is not set in the .gitlab-ci.yml config, this results in a pipeline failure.
- If the security tool did not run successfully and did not produce meaningful vulnerability data, display a failure icon in the UI.
Edited by Ulises Fierro