Show link to full list of vulnerabilities for Container Scanning and DAST in the MR widget
Description
In the MR widget, we have Security reports shown that list differences between the head
and the base
commit for each of the Security features (SAST, Dependency Scanning, Container Scanning, DAST).
SAST and Dependency Scanning show the diffs, but also a link to the full list of vulnerabilities. If you click that link, the diff list is replaced with the full list.
We should extend the same approach to Container Scanning and DAST.
Original proposal
### ProposalAdd a link to replace the diff report with the full report for Container Scanning and DAST in the MR widget. It should be like we already have for SAST and Dependency Scanning.
If head
and base
reports are present...
- Show diffs in MR widget
- Have a single link to the pipeline page for the full report. With DAST and Container scanning reports implemented at pipeline level, a single link will suffice.
if just the head
report is present...
- Show the full report in the MR
- Show the link to the full report for consistency-sake
Further, we can remove the functionality of displaying the full report in the MR widget itself. This is currently available for SAST and Dependancy scanning.