search

devtron-labs / devtron

Tool integration platform for Kubernetes
https://devtron.ai
Apache License 2.0
4.28k stars 474 forks source link

Feature: Segregate the CVE on the basis of severity (LOW,MEDIUM,HIGH,CRITICAL ) of trivy scanned result on Devtron UI. #5521

Open ajaydevtron opened 2 months ago

ajaydevtron commented 2 months ago

🔖 Feature description

Currently we club the (HIGH,CRITICAL) vulnerabilities and show the count on following pages.

  1. On Build page
Screenshot 2024-07-18 at 4 22 37 PM
  1. On Security page (Global configuration)
Screenshot 2024-07-18 at 4 25 30 PM
  1. On Deployment trigger page
Screenshot 2024-07-18 at 4 26 32 PM

But while scanning manually image we are getting the following count of each severity and this correct result we are showing on only one place at app details page of Devtron (after using SCAN_V2_ENABLED in orchestrator , ENABLE_RESOURCE_SCAN and ENABLE_RESOURCE_SCAN_V2 in dashboard ) as we can see here

Screenshot 2024-07-18 at 4 30 48 PM

Total: 243 (UNKNOWN: 0, LOW: 179, MEDIUM: 30, HIGH: 33, CRITICAL: 1)

🎤 Pitch / Usecases

We also wanted to add the security enforcement on deployment if any image have critical vulnerabilities but right now it is also including the HIGH in count.

🔄️ Alternative

No response

👀 Have you spent some time to check if this issue has been raised before?

🏢 Have you read the Code of Conduct?

AB#10189

azure-boards[bot] commented 2 months ago

❌ There was a problem linking to Azure Boards work item(s):

Please check the IDs and try again using the AB# syntax. Learn more

azure-boards[bot] commented 2 months ago

❌ There was a problem linking to Azure Boards work item(s):

Please check the IDs and try again using the AB# syntax. Learn more

ajaydevtron commented 2 months ago

Duplicate of #4166