Feature Request: Enhanced Filtering Capabilities for IaC Scan Results in the Security Dashboard and CI/CD Security Tab

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Problem to solve

Currently, IaC and SAST scan results are both grouped under the SAST category in the Security Dashboard and the CI/CD pipeline security tab. This makes it difficult to differentiate and analyze results specific to each scanner, especially when trying to focus on IaC security findings. The lack of filtering options based on the scanner type complicates the management and prioritization of vulnerabilities.

Proposal

Introduce enhanced filtering options in the Security Dashboard and the CI/CD pipeline security tab that allow users to view only IaC scan results.

Intended users

This feature would benefit DevOps teams, security engineers, and developers who use GitLab for IaC scanning, especially those who manage complex projects. This enhancement would help them to quickly identify and respond to the most relevant security threats.