Skip to content

Add support for file location to graphql generic security report

What does this MR do and why?

It adds support for rendering the fileLocation report type within the GraphQL version of the security pipeline modal.

Screenshots or screen recordings

Screenshot_2023-01-18_at_8.23.51_pm

How to set up and validate locally

Setup

  1. Have the related FF enabled: echo "Feature.enable(:pipeline_security_dashboard_graphql)" | rails c
  2. You'll need an EE License
  3. You'll need to have runners enabled (See $2408961 for setting up a runner)
  4. Import https://gitlab.com/gitlab-examples/security/security-reports
  5. Run a pipeline on master

Validation

  1. Go to the pipeline's security report tab
  2. Click on the finding with the title "X-Frame-Options Header Not Set"
  3. Verify that the file-location renders as expected

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #386154 (closed)

Edited by David Pisek

Merge request reports

Loading