Identify new vulnerabilities in the pipeline security tab
Problem to solve
The security widget in the MR is small making it difficult to triage and get an overview of all new vulnerabilities on the feature branch. Further, for each security report type, the widget displays the first 25 added and 25 fixed findings, sorted by severity. Users need a place where they can see all new vulnerabilities.
Proposal
The link on the security MR widget already has a link that says view full report. This link takes a user directly to the security tab in the pipeline.
- Add a column on the security tab in the pipeline that highlights if a vulnerability finding is new or not.
- Add a filter on the security tab in the pipeline that allows our user to filter by:
- New findings on the feature branch
- Existing findings on the default branch
- Both existing and new findings
Intended users
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.