Security Report opens vulnerable file, not vulnerable line of the file
Summary
The "Security Reports" tab of the CI/CD pipeline opens the vulnerable file but does not highlight the vulnerable line. The target link doesn't contain line information.
Steps to reproduce
- Create a clone of the test project for C and C++
- Run the pipeline
- Expand the list of vulnerabilities
- Click on the name of some vulnerable file
Same problem occurs when clicking on the file name in the pop-in window.
Example Project
https://staging.gitlab.com/security-products/tests/c/pipelines/12590187/security
What is the current bug behavior?
It opens the vulnerable file but doesn't highlight the vulnerable line.
What is the expected correct behavior?
It should open the file and highlight the line that's vulnerable.
GitLab environment info
Bug occurs on staging, currently running GitLab Enterprise Edition 11.0.0-rc9-ee 32e2d516.
Bug does NOT occur on production, currently running GitLab Enterprise Edition 11.0.0-rc5-ee 9eb4615d.
Edited by Fabien Catteau