Show the timestamp when a vulnerability became no longer detected

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Release notes

Problem to solve

Continuation of the discussion from &5708 (comment 1987539138).

As a user of the vulnerability report, I want to know the timestamp of when a vulnerability was no longer detected so that I can improve both internal metrics and user-facing metrics towards resolution.

Proposal

Add a resolved_on_default_branch_since timestamp to each vulnerability. When resolved_on_default_branch flips to true, set this timestamp to the current time. Expose this timestamp via the GraphQL API. Show it in the UI as "No longer detected since X".

Intended users

Feature Usage Metrics

Does this feature require an audit event?