BE: On the security dashboard, make the file path and line number a link
Why are we doing this work
On the security dashboard, the file path and line number of a vulnerability is shown as non clickable. In order to make it clickable, GraphQL schema needs to be updated to support file path so that user can directly access to a source file from a security dashboard.
Relevant links
Non-functional requirements
-
Documentation: -
Feature flag: -
Performance: -
Testing:
Implementation plan
-
Add blobPath
field toVulnerabilityLocation
types schema as suggested below. Same name used in vulnerability details page as well to show the file link. Not all types havefile
field. So only addsblobPath
field to the types (CoverageFuzzingType
,DependencyScanningType
,SastType
,SecretDetectionType
) those havefile
field. -
In VulnerabilityType change logic to add blob_path
to location as it is done here
Edited by Subashis Chakraborty