Sec finding modal: add missing location data
What does this MR do and why?
Adds the container-image scanning and coverage-fuzzing fields to the security finding modal. They are currently not rendered in the UI.
Container image fields
- image
- operatingSystem
Coverage fuzzing fields
- crashType
- crashAddress
- stacktraceSnippet
- vulnerableClass
- vulnerableMethod
Screenshots or screen recordings
Container Scanning | Coverage Fuzzing |
---|---|
How to set up and validate locally
- Enable the
standalone_finding_modal
feature flag - Go to a pipeline's vulnerability report
- Find a Coverage Fuzzing finding and verify that the data captured above is displaying
- Find a Container Image scanning finding and verify that the data captured above is rendering
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
I have evaluated the MR acceptance checklist for this MR.
Related to #419147 (closed) and #419152 (closed)
Edited by David Pisek