Allow Maintainers to view dependencies from /explore/dependencies
Why are we doing this work
This work will give Maintainers the ability to view all dependencies from all projects that they have Maintainer level access on from the /explore/dependencies
page.
Relevant links
Non-functional requirements
-
Documentation: -
Feature flag: explore_dependencies
-
Performance: -
Testing:
Implementation plan
-
backend Research an efficient way to load the dependencies from all projects that the currently logged in user has a Maintainer permission on. -
backend Update OrganizationPolicy to allow access to :read_dependency
and:read_licenses
-
backend Update organization.sbom_occurrences
query to exclude occurrences from projects that the user is not a member of. -
backend Update the export to only include dependencies that the current user has access to. !146522 (merged)
Verification steps
- enable
explore_dependencies
for the target user. - visit
/explore/dependencies
- verify that the list of dependencies are from projects that the current user is a maintainer of
Edited by mo khan