feat: add column for policy in security modal

Author: arunjaindev

package-lock.json

@@ -1,6 +1,6 @@
 {
     "name": "@devtron-labs/devtron-fe-common-lib",
-    "version": "0.3.15",
+    "version": "0.3.15-beta-1",
     "description": "Supporting common component library",
     "type": "module",
     "main": "dist/index.js",
@@ -83,18 +83,18 @@
         "react-dom": "^17.0.2",
         "react-draggable": "^4.4.5",
         "react-ga4": "^1.4.1",
+        "react-keybind": "^0.9.4",
         "react-mde": "^11.5.0",
         "react-router": "^5.3.0",
         "react-router-dom": "^5.3.0",
         "react-select": "5.8.0",
-        "react-keybind": "^0.9.4",
         "rxjs": "^7.8.1",
         "yaml": "^2.4.1"
     },
     "dependencies": {
         "@types/react-dates": "^21.8.6",
         "ansi_up": "^5.2.1",
-        "dayjs": "^1.11.12",
+        "dayjs": "^1.11.13",
         "fast-json-patch": "^3.1.1",
         "jsonpath-plus": "^9.0.0",
         "react-dates": "^21.8.0",

package.json

@@ -639,12 +639,6 @@ export interface VulnerabilityType {
     url?: string
 }
 
-export interface ScanVulnerabilitiesTableProps {
-    vulnerabilities: VulnerabilityType[]
-    hidePolicy?: boolean
-    shouldStick?: boolean
-}
-
 export interface MaterialInfo {
     revision: string
     modifiedTime: string | Date

src/Common/Types.ts

@@ -44,6 +44,7 @@ const ImageCardAccordion = ({
     isSecurityModuleInstalled,
     artifactId,
     applicationId,
+    environmentId,
     changesCard,
     isScanned,
     isScanEnabled,
@@ -73,6 +74,7 @@ const ImageCardAccordion = ({
                 isScanEnabled={isScanEnabled}
                 artifactId={artifactId}
                 applicationId={applicationId}
+                environmentId={environmentId}
                 setVulnerabilityCount={setVulnerabilityCount}
                 SecurityModalSidebar={SecurityModalSidebar}
                 getSecurityScan={getSecurityScan}

src/Shared/Components/ImageCardAccordion/ImageCardAccordion.tsx

@@ -23,6 +23,7 @@ export interface ImageCardAccordionProps extends MaterialSecurityInfoType {
     isSecurityModuleInstalled: boolean
     artifactId: number
     applicationId: number
+    environmentId: number
     changesCard: ReactNode
     isScanned: boolean
     isScanEnabled: boolean

src/Shared/Components/ImageCardAccordion/types.ts

@@ -41,6 +41,7 @@ const SecurityModal: React.FC<SecurityModalPropsType> = ({
     isHelmApp = false,
     isSecurityScanV2Enabled = false,
     isExternalCI = false,
+    hidePolicy = false,
 }) => {
     const [state, setState] = useState<SecurityModalStateType>(DEFAULT_SECURITY_MODAL_STATE)
 
@@ -108,7 +109,8 @@ const SecurityModal: React.FC<SecurityModalPropsType> = ({
 
         /* NOTE: if detailView is active show data gathered from that */
         const { headers, rows, defaultSortIndex, hasExpandableRows } =
-            selectedDetailViewData || getTableData(data, state.category, state.subCategory, setDetailViewData)
+            selectedDetailViewData ||
+            getTableData(data, state.category, state.subCategory, setDetailViewData, hidePolicy)
 
         const { entities, lastScanTimeString, scanToolId } =
             selectedDetailViewData || getInfoCardData(data, state.category, state.subCategory)

src/Shared/Components/Security/SecurityModal/SecurityModal.tsx

@@ -33,7 +33,7 @@ import {
 } from '../types'
 import { OpenDetailViewButton } from '../components'
 
-export const getCodeScanVulnerabilities = (data: CodeScan['vulnerability']) => ({
+export const getCodeScanVulnerabilities = (data: CodeScan['vulnerability'], hidePolicy: boolean) => ({
     headers: [
         { headerText: 'cve id', isSortable: false, width: 150 },
         {
@@ -46,6 +46,7 @@ export const getCodeScanVulnerabilities = (data: CodeScan['vulnerability']) => (
         { headerText: 'package', isSortable: true, width: 143.33 },
         { headerText: 'current version', isSortable: false, width: 143.33 },
         { headerText: 'fixed in version', isSortable: false, width: 143.33 },
+        !hidePolicy && { headerText: 'policy', isSortable: false, width: 143.33 },
     ],
     rows: !data?.list?.length
         ? null
@@ -87,6 +88,14 @@ export const getCodeScanVulnerabilities = (data: CodeScan['vulnerability']) => (
                       component: null,
                       cellContent: element.fixedInVersion,
                   },
+                  !hidePolicy && {
+                      component: (
+                          <span className={`security-policy--${element.permission?.toLowerCase()}`}>
+                              {element.permission}
+                          </span>
+                      ),
+                      cellContent: element.permission,
+                  },
               ],
           })),
     defaultSortIndex: 1,
@@ -376,10 +385,11 @@ export const getCodeScanTableData = (
     data: CodeScan,
     subCategory: SecurityModalStateType['subCategory'],
     setDetailViewData: OpenDetailViewButtonProps['setDetailViewData'],
+    hidePolicy: boolean,
 ): TablePropsType => {
     switch (subCategory) {
         case SUB_CATEGORIES.VULNERABILITIES:
-            return getCodeScanVulnerabilities(data[subCategory])
+            return getCodeScanVulnerabilities(data[subCategory], hidePolicy)
         case SUB_CATEGORIES.LICENSE:
             return getCodeScanLicense(data[subCategory])
         case SUB_CATEGORIES.MISCONFIGURATIONS:

src/Shared/Components/Security/SecurityModal/config/CodeScan.tsx

@@ -51,6 +51,7 @@ const getVulnerabilitiesDetailBaseData = (element: ImageScanVulnerabilityListTyp
 const getGroupedVulnerabilitiesDetailData = (
     element: ImageScanVulnerabilityListType,
     setDetailViewData: OpenDetailViewButtonProps['setDetailViewData'],
+    hidePolicy: boolean,
 ) => {
     const list = !element?.list?.length ? null : groupByTarget(element.list)
 
@@ -81,7 +82,7 @@ const getGroupedVulnerabilitiesDetailData = (
                                           summary: child.summary,
                                       }),
                                       titlePrefix: 'Source',
-                                      ...getCodeScanVulnerabilities(child),
+                                      ...getCodeScanVulnerabilities(child, hidePolicy),
                                   }}
                                   setDetailViewData={setDetailViewData}
                               >
@@ -102,15 +103,16 @@ const getGroupedVulnerabilitiesDetailData = (
 const getVulnerabilitiesDetailData = (
     element: ImageScanVulnerabilityListType,
     setDetailViewData: OpenDetailViewButtonProps['setDetailViewData'],
+    hidePolicy: boolean,
 ) => {
     const shouldGroupByTarget = element.list.every((item) => !!item.target)
     if (!shouldGroupByTarget) {
         return {
             ...getVulnerabilitiesDetailBaseData(element),
-            ...getCodeScanVulnerabilities(element),
+            ...getCodeScanVulnerabilities(element, hidePolicy),
         }
     }
-    return getGroupedVulnerabilitiesDetailData(element, setDetailViewData)
+    return getGroupedVulnerabilitiesDetailData(element, setDetailViewData, hidePolicy)
 }
 
 const getImageScanProgressingState = (status: StatusType['status']) => {
@@ -147,6 +149,7 @@ const getTimeString = (timeString: string, status: StatusType['status']) => {
 const getVulnerabilitiesData = (
     data: ImageScan['vulnerability'],
     setDetailViewData: OpenDetailViewButtonProps['setDetailViewData'],
+    hidePolicy: boolean,
 ) => ({
     headers: [
         { headerText: 'image', isSortable: false, width: 256 },
@@ -162,7 +165,7 @@ const getVulnerabilitiesData = (
                   {
                       component: (
                           <OpenDetailViewButton
-                              detailViewData={getVulnerabilitiesDetailData(element, setDetailViewData)}
+                              detailViewData={getVulnerabilitiesDetailData(element, setDetailViewData, hidePolicy)}
                               setDetailViewData={setDetailViewData}
                           >
                               <span className="cb-5 fw-4 cursor">{element.image}</span>
@@ -292,10 +295,11 @@ export const getImageScanTableData = (
     data: ImageScan,
     subCategory: SecurityModalStateType['subCategory'],
     setDetailViewData: OpenDetailViewButtonProps['setDetailViewData'],
+    hidePolicy: boolean,
 ): TablePropsType => {
     switch (subCategory) {
         case SUB_CATEGORIES.VULNERABILITIES:
-            return getVulnerabilitiesData(data[subCategory], setDetailViewData)
+            return getVulnerabilitiesData(data[subCategory], setDetailViewData, hidePolicy)
         case SUB_CATEGORIES.LICENSE:
             return getLicenseData(data[subCategory], setDetailViewData)
         default:

src/Shared/Components/Security/SecurityModal/config/ImageScan.tsx

@@ -18,12 +18,13 @@ export const getTableData = (
     category: SecurityModalStateType['category'],
     subCategory: SecurityModalStateType['subCategory'],
     setDetailViewData: OpenDetailViewButtonProps['setDetailViewData'],
+    hidePolicy: boolean,
 ): TablePropsType => {
     switch (category) {
         case CATEGORIES.IMAGE_SCAN:
-            return getImageScanTableData(data[category], subCategory, setDetailViewData)
+            return getImageScanTableData(data[category], subCategory, setDetailViewData, hidePolicy)
         case CATEGORIES.CODE_SCAN:
-            return getCodeScanTableData(data[category], subCategory, setDetailViewData)
+            return getCodeScanTableData(data[category], subCategory, setDetailViewData, hidePolicy)
         case CATEGORIES.KUBERNETES_MANIFEST:
             return getKubernetesManifestTableData(data[category], subCategory, setDetailViewData)
         default:

src/Shared/Components/Security/SecurityModal/config/Table.tsx

@@ -26,7 +26,7 @@ export const getExecutionDetails = async (
                 package: cve.package,
                 version: cve.currentVersion,
                 fixedVersion: cve.fixedVersion,
-                policy: cve.permission,
+                permission: cve.permission,
             })) || [],
     }
     return { ...response, result: parseExecutionDetailResponse(parsedResult) }

src/Shared/Components/Security/SecurityModal/service.ts

@@ -148,6 +148,7 @@ export interface CodeScanVulnerabilityType {
     package: string
     currentVersion: string
     fixedInVersion: string
+    permission?: string
 }
 
 export interface ImageScanVulnerabilityType extends CodeScanVulnerabilityType {
@@ -256,6 +257,7 @@ interface SecurityModalBaseProps extends Partial<Pick<SidebarPropsType, 'isExter
     isHelmApp?: boolean
     isResourceScan?: boolean
     isSecurityScanV2Enabled: boolean
+    hidePolicy?: boolean
 }
 
 export type SecurityModalPropsType = SecurityModalBaseProps

src/Shared/Components/Security/SecurityModal/types.ts

@@ -136,6 +136,7 @@ export const parseExecutionDetailResponse = (scanResult): ApiResponseResultType
                         currentVersion: vulnerability?.version,
                         fixedInVersion: vulnerability?.fixedVersion,
                         severity: getSeverityFromVulnerabilitySeverity(vulnerability?.severity),
+                        permission: vulnerability?.permission,
                     })),
                     scanToolName: scanResult.scanToolId === SCAN_TOOL_ID_TRIVY ? 'TRIVY' : 'CLAIR',
                     StartedOn:

src/Shared/Components/Security/SecurityModal/utils.tsx

@@ -13,6 +13,7 @@ const SecuritySummaryCard = ({
     SecurityModalSidebar,
     responseData,
     isSecurityScanV2Enabled,
+    hidePolicy = false,
 }: SecuritySummaryCardProps) => {
     const [showSecurityModal, setShowSecurityModal] = useState<boolean>(false)
     const { critical = 0, high = 0, medium = 0, low = 0, unknown = 0 } = severityCount
@@ -66,6 +67,7 @@ const SecuritySummaryCard = ({
                     isLoading={false} // Loading and error are handled on parent components
                     error={null}
                     responseData={responseData}
+                    hidePolicy={hidePolicy}
                 />
             )}
         </>

src/Shared/Components/Security/SecuritySummaryCard/SecuritySummaryCard.tsx

@@ -9,4 +9,5 @@ export type SecuritySummaryCardProps = {
     isHelmApp?: boolean
     isSecurityScanV2Enabled: boolean
     responseData: ApiResponseResultType
+    hidePolicy?: boolean
 } & Pick<ImageCardAccordionProps, 'SecurityModalSidebar'>