Vulnerability Report: Add identifier list popover (#564939) · Issues · GitLab.org / GitLab

Vulnerability Report: Add identifier list popover

### Summary We have the identifiers in the GraphQL response on the Vulnerability Report. When there is more than 1, we simply show "+ x more". Similar to the risk factors, we should show these extra identifiers in a popover. ### Design | | Severity: +N more | Identifier: +N more | |--|-------------------|---------------------| | Default (no hover or focus) | ![image.png](/uploads/a97deb4bb2812dc368d7bc545d99e700/image.png) | ![image.png](/uploads/54875c0b2086dcfde46ffa25f689fb96/image.png) | | Cursor hover | ![image.png](/uploads/8d3591c2d453308df72334fc0227bf9a/image.png) | ![image.png](/uploads/abfd6d527b0a8bf6579ca1ff4938ef41/image.png) | | Tab (focus state) | ![image.png](/uploads/a89ea253dbb714479c8d65ac2c727007/image.png) | ![image.png](/uploads/48366c31e0ca28949eb72e41328a3855/image.png) | ### Implementation 1. Create identifier popover 2. Make sure we use [meta link style](https://design-gitlab-com-gitlab-org-gitlab-services-f6beaf2fb7fd4cad76.gitlab.io/storybook/?path=%2Fstory%2Fbase-link--meta-link) for both the "+x more" on the identifier as well as the risk factors, so this is consistent ### Release notes The Vulnerability Report now shows the primary CVE identifier as a clickable link directly in each row. When additional identifiers exist, a **"+N more"** popover lists them all — each linking to its external reference (e.g., CVE, CWE, WASC databases) so you can quickly access more details without leaving the report. See [#564939](https://gitlab.com/gitlab-org/gitlab/-/work_items/564939) for details. ![Screenshot_2026-03-31_at_11.58.56](/uploads/6b52a4ec6f15eb923bdee71a0ff2ff04/Screenshot_2026-03-31_at_11.58.56.png){width=300 height=183}

issue