Add generic security report to GraphQL finding modal
What does this MR do and why?
It adds a GraphQL version of the generic report section to the findings modal and a query that will fetch and render "url" report items.
Screenshots or screen recordings
finding with generic report items |
---|
How to set up and validate locally
- Enable the related feature flag:
echo "Feature.enable(:pipeline_security_dashboard_graphql)" | rails c
- Import https://gitlab.com/gitlab-examples/security/security-reports
- Run a new pipeline
- Navigate to the pipeline's security tab
- Change the "tool" filter to "DAST"
- Click on the "X-Frame-Options Header Not Set" finding to open the modal
- Verify that the modal renders as the one in the screenshot in the description
- Click on another finding and make sure that the "Evidence" section does not render
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
I have evaluated the MR acceptance checklist for this MR.
Related to #386149 (closed)
Edited by David Pisek