Skip to content

Update identifiers format for security training

What does this MR do and why?

In this MR, we update the identifierExternalIds format. This is in preparation for us to support more vulnerability types beyond the current "CWE". We're planning to add support for OWASP here > #356287 (closed)

// Before
identifierExternalIds: name

// New
identifierExternalIds: [external_type]-[external_id]-[name]

// The different data is grouped with a square bracket [], separated with a dash -
Identifiers Request
2022-07-01_at_3.39_PM 2022-07-01_at_3.37_PM

Screenshots or screen recordings

There are no UI/UX changes

How to set up and validate locally

  1. Go to Security & Compliance > Vulnerability report
  2. Select a vulnerability that has a CWE identifier
  3. Open the Network panel and note the request for "getSecurityTrainingUrls"
  4. The request is sending the correct format for the "identifierExternalIds"

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #366551 (closed)

Edited by Jose Ivan Vargas

Merge request reports

Loading