Conditionally show policy violation vuln filter
What does this MR do and why?
Conditionally show policy violation vuln filter for the vulnerability report at all levels except pipeline
- with feature flag, show policy violation activity filter in the activity dropdown
What does this MR not do and why?
_ it does not apply the filter to the backend requests because that work is not complete yet
References
Screenshots or screen recordings
| Scenario | Screenshot |
|---|---|
| Before / FF off |  |
| Project |  |
| Group |  |
| Instance |  |
How to set up and validate locally
- Upload a GitLab Ultimate license
- Enable the
security_policy_approval_warn_modefeature flag in http://gdk.test:3000/rails/features - Navigate to a project with vulnerabilities => Secure => Vulnerability report
- Verify the user can see an activity filter for policy violations
- Navigate to a group with a project with vulnerabilities => Secure => Vulnerability report
- Verify the user can see an activity filter for policy violations
- Navigate to the user's 'Your work' section via search bar in sidebar => Security => Vulnerability report (or
http://gdk.test:3000/-/security/vulnerabilities/) - Verify the user can see an activity filter for policy violations
MR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Related to #549786
Edited by Alexander Turinske