Project level View details of a DAST vulnerability |
|
|
|
MR View details of a DAST vulnerability |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/create_merge_request_with_secure_spec.rb
|
MR View details of a Dependency Scanning vulnerability |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/create_merge_request_with_secure_spec.rb
|
MR View details of a Container Scanning vulnerability |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/create_merge_request_with_secure_spec.rb
|
Dismiss a vulnerability |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/vulnerability_management_spec.rb
|
Dismiss multiple vulnerabilities |
|
|
|
Create an issue for a vulnerability (nicole assumes w/out edits) |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/vulnerability_management_spec.rb
|
Create an issue for a vulnerability WITH EDITS |
|
|
🚧 gitlab-org/quality/testcases#1140 (closed)
|
New create a JIRA issue for a vulnerability |
|
|
gitlab-org/quality/testcases#1101 (closed) |
Automatic remediation for vulnerabilities - DS |
✅ see https://gitlab.com/gitlab-org/quality/team-tasks/-/issues/736#auto-remediation
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/vulnerability_management_spec.rb
|
Automatic remediation for vulnerabilities - CS |
❌ |
|
|
Automatic remediation for vulnerabilities - Manually apply the suggested patch |
|
|
|
Create MR from a vulnerability |
|
|
|
Create MR from a vulnerability twice, check message |
|
|
|
Add related issue for a vulnerability |
|
|
|
Remove related issue for a vulnerability |
|
|
|
Security approvals in MRs |
|
|
|
License Approvals within a project |
see https://gitlab.com/gitlab-org/quality/team-tasks/-/issues/736#license-compliance
|
|
|
Security report out of date |
|
|
|
Security Configuration status |
|
|
|
Security Configuration Autodevops |
|
|
|
Security Configuration SAST |
|
|
|
Security Configuration DAST |
|
|
|
Dependency List |
see https://gitlab.com/gitlab-org/quality/team-tasks/-/issues/736#dependency-list
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/security_reports_spec.rb#L133
|
Standalone vulnerabilities on Dependency List page |
|
|
❌ gitlab-org/quality/testcases#1672 (closed)
|
Security Dashboard Secrets |
|
|
|
Pipeline Security tab Secrets |
|
|
|
MR widget Secrets |
|
|
|
Pipeline Security Dashboard |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/security_reports_spec.rb
|
Project Security Dashboard graph gitlab-org/quality/testcases#1092
|
|
|
|
Project Vulnerability Report |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/project_security_dashboard_spec.rb https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/security_reports_spec.rb
|
Group Security Dashboard |
|
|
✅ https://gitlab.com/gitlab-org/gitlab/-/blob/master/qa/qa/specs/features/ee/browser_ui/secure/security_reports_spec.rb
|
Security Centre |
|
|
|
Export |
|
|
|
Vulnerability Report |
|
|
|
Project Security Dashboard when pipeline is blocked by a manual step (gitlab-org/gitlab#247490 (closed)) |
|
|
❌ |