[FE] UI for Pipeline > Security Report Page

Problem

We want to display token validity status in the Pipeline Security Report page.

Proposed Solution

Screenshot_2025-08-08_at_12.44.54_AM

We can follow the same logic as the Vulnerability Report.

Implementation Plan

  • app/assets/javascripts/ci/pipeline_details/pipeline_details_bundle.js we want to parse validityChecksEnabled from the dataset and then include it in securityRoute.props
  • ee/app/assets/javascripts/security_dashboard/components/pipeline/pipeline_security_dashboard.vue provide validityChecksEnabled
  • ee/app/controllers/ee/projects/pipelines_controller.rb we want to push_frontend_feature_flag(:validity_checks, project, type: :wip) so that VulnerabilityList has access to the feature flag
  • ee/app/helpers/ee/projects/pipeline_helper.rb add validity_checks_enabled to js_pipeline_tabs_data so that the FE can receive whether or not the project has been opted-in

That should be enough to get it displayed there as the logic for displaying the findingTokenStatus was introduced back during Vulnerability Report since they use the same component.

Edited by Radu Birsan