FE: Add severity counters to Group and Instance Vulnerability Reports
Problem:
Users are not able to quickly identify how many vulnerabilities exist for a given severity level, which makes prioritizing triage efforts difficult to accomplish.
Solution:
Add the severity counters currently present in the project level vulnerability report to both the Instance and Group level Vulnerability Reports. Counters should function as they do at the project level by representing the filtered amount of vulnerabilities for each severity.
Severity counters:
Details:
This is the frontend issue specific to API updates supporting this requirement. The backend work will be tracked in #262723 (closed)
Implementation plan
-
frontend We already have a component which displays the count in the Project Security Dashboard. The component is ee/app/assets/javascripts/security_dashboard/components/vulnerability_count_list.vue
. Currently thequery
and itsarguments
are hardcoded in the component. If we slightly refactor the component to take a query and its arguments as properties we can reuse the same component. If the component becomes too complex for this, we can also create one component per dashboard. In any case, considering the effort needed for the implementation, I believe a 2 would be appropriate as weight.
Edited by Savas Vedova