Add dismissal descriptions to vulnerability report pages
What does this MR do and why?
Related #432499 (closed)
This MR passes dismissal_descriptions
to the instance, group, and project vulnerability report pages. In a next MR iteration, the frontend can extract these from the dataset and pass along to a child component to display the dismissal reason descriptions in a dropdown (see issue for design).
How to set up and validate locally
Prerequisites
- You need an EE license
- You need to have runners enabled (See $2408961 for setting up a runner)
- Import https://gitlab.com/gitlab-examples/security/security-reports
- Run a pipeline on master
Validate
Validate that you can find data-dismissal-descriptions
with a json string of the descriptions in the page source (right-click > view Page Source) of the:
- instance vulnerability report page:
http://gdk.test:3000/-/security/vulnerabilities
(make sure the instance has vulnerabilities by selecting projects with vulnerabilities at http://gdk.test:3000/-/security/dashboard/settings) - group vulnerability report page:
http://gdk.test:3000/groups/<some-group>/-/security/vulnerabilities
(make sure the group has vulnerabilities) - project vulnerability report page:
http://gdk.test:3000/root/security-reports/-/security/vulnerability_report
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
I have evaluated the MR acceptance checklist for this MR.
Edited by Lorenz van Herwaarden