Update description to Security tab of the pipeline page and full report text
Problem to solve
When a user clicks on Full Report
1 from the MR security widget they are directed to the most recent pipeline security tab2. However, the most recent pipeline security tab is just a pipeline that is run for that branch and does not do a comparison. Further, the text on the pipeline security tab reads:
Results show vulnerabilities introduced by the merge request, in addition to existing vulnerabilities from the latest successful pipeline in your project's default branch.
This statement is also inaccurate since the pipeline only shows what vulnerabilities were produced in the latest security scan on the pipeline.
Proposal
- Change the text on the MR security widget from
toFull report
View all pipeline findings
- Change the text on the security tab on the pipeline from
Results show vulnerabilities introduced by the merge request, in addition to existing vulnerabilities from the latest successful pipeline in your project's default branch.to Results show vulnerability findings from the latest successful pipeline.
Verification steps
- go to gitlab-examples/security/security-reports!118
- verify that button on the right side of the security widget now has the label "View all pipeline findings". Click on the button.
- on the pipeline security tab, the description should read: "Results show vulnerability findings from the latest successful pipeline." and pipeline should link to the "Vulnerabilities in a pipeline" doc.
Edited by Lorenz van Herwaarden