Improve LicenseDetections UI

Signed-off-by: Ayan Sinha Mahapatra <ayansmahapatra@gmail.com>

Author: AyanSinhaMahapatra

scanpipe/filters.py

@@ -772,6 +772,8 @@ class Meta:
 class LicenseFilterSet(FilterSetUtilsMixin, django_filters.FilterSet):
     dropdown_widget_fields = [
         "compliance_alert",
+        "license_expression",
+        "license_expression_spdx",
     ]
 
     search = DiscoveredLicenseSearchFilter(
@@ -788,6 +790,7 @@ class LicenseFilterSet(FilterSetUtilsMixin, django_filters.FilterSet):
         ],
     )
     license_expression = ParentAllValuesFilter()
+    license_expression_spdx = ParentAllValuesFilter()
     compliance_alert = django_filters.ChoiceFilter(
         choices=[(EMPTY_VAR, "None")] + CodebaseResource.Compliance.choices,
     )

scanpipe/models.py

@@ -1234,6 +1234,16 @@ def license_detections_count(self):
         """Return the number of license detections in this project."""
         return self.discoveredlicenses.count()
 
+    @cached_property
+    def package_compliance_alert_count(self):
+        """Return the number of packages related to this project which have."""
+        return self.discoveredpackages.has_compliance_alert().count()
+
+    @cached_property
+    def license_compliance_alert_count(self):
+        """Return the number of packages related to this project which have."""
+        return self.discoveredlicenses.has_compliance_alert().count()
+
     @cached_property
     def message_count(self):
         """Return the number of messages related to this project."""
@@ -2156,6 +2166,17 @@ class Compliance(models.TextChoices):
     class Meta:
         abstract = True
 
+    @property
+    def has_compliance_alert(self):
+        """
+        Returns True if this instance has a compliance alert of `ERROR`
+        for it's respective license_expression fields.
+        """
+        if self.compliance_alert == self.Compliance.ERROR:
+            return True
+
+        return False
+
     @classmethod
     def from_db(cls, db, field_names, values):
         """
@@ -2710,8 +2731,16 @@ def vulnerable(self):
         return self.filter(~Q(affected_by_vulnerabilities__in=EMPTY_VALUES))
 
 
+class ComplianceAlertQuerySetMixin:
+    def has_compliance_alert(self):
+        return self.filter(Q(compliance_alert__exact=CodebaseResource.Compliance.ERROR))
+
+
 class DiscoveredPackageQuerySet(
-    VulnerabilityQuerySetMixin, PackageURLQuerySetMixin, ProjectRelatedQuerySet
+    VulnerabilityQuerySetMixin,
+    ComplianceAlertQuerySetMixin,
+    PackageURLQuerySetMixin,
+    ProjectRelatedQuerySet,
 ):
     def order_by_purl(self):
         """Order by Package URL fields."""
@@ -3485,7 +3514,10 @@ def as_spdx(self):
         )
 
 
-class DiscoveredLicenseQuerySet(ProjectRelatedQuerySet):
+class DiscoveredLicenseQuerySet(
+    ComplianceAlertQuerySetMixin,
+    ProjectRelatedQuerySet,
+):
     def order_by_count_and_expression(self):
         """Order by detection count and license expression (identifer) fields."""
         return self.order_by("-detection_count", "identifier")
@@ -3550,7 +3582,6 @@ class DiscoveredLicense(
     """
     A project's Discovered Licenses are the unique License Detection objects
     discovered in the code under analysis.
-
     """
 
     license_expression_field = "license_expression"

scanpipe/templates/scanpipe/includes/project_summary_level.html

@@ -14,6 +14,12 @@
               <i class="fa-solid fa-bug is-size-6"></i>
             </a>
           {% endif %}
+          {% if project.package_compliance_alert_count %}
+            <a href="{% url 'project_packages' project.slug %}?compliance_alert=error" class="has-text-danger is-size-5 ml-2">
+              {{ project.package_compliance_alert_count|intcomma }}
+              <i class="fa-solid fa-scale-balanced is-size-6"></i>
+            </a>
+          {% endif %}
         {% else %}
           <span>0</span>
         {% endif %}
@@ -40,20 +46,6 @@
       </p>
     </div>
   </div>
-  <div class="level-item has-text-centered">
-    <div>
-      <p class="heading">License Detections</p>
-      <p class="{{ title_class }} is-flex is-align-items-center is-justify-content-center">
-        {% if project.license_detections_count %}
-          <a href="{% url 'project_licenses' project.slug %}">
-            {{ project.license_detections_count|intcomma }}
-          </a>
-        {% else %}
-          <span>0</span>
-        {% endif %}
-      </p>
-    </div>
-  </div>
   <div class="level-item has-text-centered">
     <div>
       <p class="heading">Resources</p>

scanpipe/templates/scanpipe/license_detection_list.html

@@ -24,23 +24,28 @@
             <td style="min-width: 300px;" title="{{ license_detection.identifier }}">
               {# CAUTION: Avoid relying on get_absolute_url to prevent unnecessary query triggers #}
               <a href="{% url 'license_detail' project.slug license_detection.identifier %}">{{ license_detection.identifier }}</a>
+              {% if license_detection.has_compliance_alert %}
+                <a href="{% url 'license_detail' project.slug license_detection.identifier %}#detection">
+                  <i class="fa-solid fa-scale-balanced fa-sm has-text-danger" title="License Compliance Error"></i>
+                </a>
+              {% endif %}
             </td>
             <td>
-              <a href="?type={{ license_detection.license_expression }}" class="is-black-link">{{ license_detection.license_expression }}</a>
+              <a href="?license_expression={{ license_detection.license_expression }}" class="is-black-link">{{ license_detection.license_expression }}</a>
             </td>
             <td>
-                <a href="?type={{ license_detection.license_expression_spdx }}" class="is-black-link">{{ license_detection.license_expression_spdx }}</a>
+                <a href="?license_expression_spdx={{ license_detection.license_expression_spdx }}" class="is-black-link">{{ license_detection.license_expression_spdx }}</a>
             </td>
             <td>
               {{ license_detection.detection_count }}
             </td>
             {% if display_compliance_alert %}
               <td>
-                <a href="?compliance_alert={{ package.compliance_alert }}" class="is-black-link">
-                  {{ package.compliance_alert }}
+                <a href="?compliance_alert={{ license_detection.compliance_alert }}" class="is-black-link">
+                  {{ license_detection.compliance_alert }}
                 </a>
               </td>
-            {% endif %}
+              {% endif %}
           </tr>
         {% empty %}
           <tr>

scanpipe/templates/scanpipe/package_list.html

@@ -30,6 +30,11 @@
                   <i class="fa-solid fa-bug fa-sm has-text-danger" title="Vulnerabilities"></i>
                 </a>
               {% endif %}
+              {% if package.has_compliance_alert %}
+                <a href="{% url 'package_detail' project.slug package.uuid %}#terms">
+                  <i class="fa-solid fa-scale-balanced fa-sm has-text-danger" title="License Compliance Error"></i>
+                </a>
+              {% endif %}
             </td>
             <td style="min-width: 300px; max-width: 400px;">
               <a href="?declared_license_expression={{ package.declared_license_expression }}" class="is-black-link">

scanpipe/templates/scanpipe/panels/license_detections_summary.html

@@ -0,0 +1,19 @@
+{% load humanize %}
+{% if license_detection_summary %}
+  <div class="column is-half">
+    <nav class="panel is-info">
+      <p class="panel-heading py-2 is-size-6">
+        Top 10 Unique License detections
+      </p>
+      {% for license_expression, count in license_detection_summary.items %}
+        <a class="panel-block is-align-items-flex-start break-word" href="{{ project_licenses_url }}?license_expression={{ license_expression|default:'_EMPTY_' }}" target="_blank">
+          {{ license_expression|default:'<i>No licenses</i>' }}
+          <span class="tag is-rounded ml-1">{{ count|intcomma }}</span>
+          {% if license_expression in expressions_with_compliance_alert %}
+            &nbsp; <span class="fa-solid fa-scale-balanced has-text-danger" title="License Compliance Error"></span>
+          {% endif %}
+        </a>
+      {% endfor %}
+    </nav>
+  </div>
+{% endif %}

scanpipe/templates/scanpipe/panels/resource_license_summary.html

@@ -104,7 +104,7 @@
 
       <div class="columns">
         <div hx-get="{% url 'project_resource_status_summary' project.slug %}" hx-trigger="load" hx-swap="outerHTML"></div>
-        <div hx-get="{% url 'project_resource_license_summary' project.slug %}" hx-trigger="load" hx-swap="outerHTML"></div>
+        <div hx-get="{% url 'project_license_detection_summary' project.slug %}" hx-trigger="load" hx-swap="outerHTML"></div>
       </div>
 
       {% if project.extra_data %}

scanpipe/templates/scanpipe/project_detail.html

@@ -18,6 +18,11 @@
                 <i class="fa-solid fa-bug fa-sm has-text-danger" title="Vulnerabilities"></i>
               </a>
             {% endif %}
+            {% if package.has_compliance_alert %}
+              <a href="{% url 'package_detail' project.slug package.uuid %}#detection">
+                <i class="fa-solid fa-scale-balanced fa-sm has-text-danger" title="License Compliance Error"></i>
+              </a>
+            {% endif %}
           </td>
           <td>
             {{ package.declared_license_expression }}

scanpipe/templates/scanpipe/tabset/tab_packages.html

@@ -683,7 +683,7 @@ def test_scanpipe_views_project_views(self):
         with self.assertNumQueries(8):
             self.client.get(url)
 
-        with self.assertNumQueries(14):
+        with self.assertNumQueries(13):
             self.client.get(self.project1.get_absolute_url())
 
     @mock.patch("scanpipe.models.Run.execute_task_async")
@@ -915,7 +915,7 @@ def test_scanpipe_views_codebase_resource_views(self):
         with self.assertNumQueries(7):
             self.client.get(url)
 
-        with self.assertNumQueries(7):
+        with self.assertNumQueries(8):
             self.client.get(resource1.get_absolute_url())
 
     def test_scanpipe_views_discovered_package_views(self):