feat: scan CVE listing #2999
Open
feat: scan CVE listing #2999
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…te into vulnerabilities router
…te into vulnerabilities router
… integrate into vulnerabilities router" This reverts commit b1a5d8b.
…ent; update CVEList to handle searchKey
…ove placeholder text in CVE list
…er clarity in SecurityScansTab components
…earchBar and update workflow filtering logic
arunjaindev
requested review from
vikramdevtron and
vivek-devtron
as code owners
|
Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n |
github-actions
bot
added
the
PR:Issue-verification-failed
|
Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n |
github-actions
bot
added
PR:Ready-to-Review
…t and SecurityScansTab; update styles and services for vulnerability data fetching
…bs/dashboard into feat/scan-cve-listing
There was a problem hiding this comment.
Pull request overview
This pull request adds comprehensive CVE listing and vulnerability scanning functionality to the security center, introducing a new vulnerabilities view with advanced filtering capabilities and refactoring the existing security scans implementation.
Key Changes:
- Added new Vulnerabilities module with CVE listing, filtering by severity/cluster/environment/fix availability/age of discovery, and vulnerability summary cards
- Refactored Security Scans tab to support scanned/not-scanned deployment filtering with updated UI and data presentation
- Enhanced workflow editor with search functionality to filter workflows by name
Reviewed changes
Copilot reviewed 38 out of 39 changed files in this pull request and generated 9 comments.
Show a summary per file
| File | Description |
|---|---|
| yarn.lock, package.json | Updated devtron-fe-common-lib to version 1.20.6-pre-52 |
| src/config/constants.ts | Added new API routes for vulnerability scanning and summary endpoints |
| src/components/workflowEditor/workflowEditor.tsx | Added workflow search functionality with URL parameter support |
| src/components/workflowEditor/Workflow.tsx | Integrated search text highlighting in workflow names using DOMPurify |
| src/components/v2/appDetails/k8Resource/nodeType/Node.component.tsx | Fixed React key generation to include namespace |
| src/components/security/security.util.tsx | Removed unused breadcrumb and tippy content utilities |
| src/components/security/security.service.ts | Refactored filter data fetching with async/await and removed mock API |
| src/components/security/security.types.ts | Added fixableVulnerabilities field to SecurityScanType |
| src/components/security/security.scss | Updated grid layout and removed unused CSS rules |
| src/components/security/constants.ts | Removed file containing breadcrumb configuration |
| src/components/security/Vulnerabilities/* | Added complete vulnerabilities module with CVE list, filters, summary, and routing |
| src/components/security/SecurityScansTab/* | Refactored to support scanned/not-scanned views with updated filtering and presentation |
| src/components/security/SecurityPoliciesTab.tsx | Updated to use new breadcrumb implementation |
| src/components/security/SecurityPageHeader.tsx | Removed component (functionality moved to individual tabs) |
| src/components/security/Security.tsx | Updated routing to use VulnerabilitiesRouter and added security enablement route |
| src/components/security/AddCveModal.tsx | Removed unused searchCVE method |
| src/components/security/AddCVEPolicy/VulnerabilityExposure.tsx | Fixed filter label retrieval for environment filter |
| src/components/Navigation/constants.ts | Renamed "Security Scans" to "Vulnerabilities" and updated "Host URLS" to "Host URL" |
| src/Pages-Devtron-2.0/SecurityCenter/Overview/* | Removed placeholder overview files |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
src/components/security/Vulnerabilities/VulnerabilitySummary.tsx
Outdated
Show resolved
Hide resolved
src/components/security/Vulnerabilities/VulnerabilitySummary.tsx
Outdated
Show resolved
Hide resolved
…ed date; update imports and remove unused enums
AbhishekA1509
requested changes
Nov 25, 2025
|
AbhishekA1509
approved these changes
Nov 26, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change.
Fixes https://github.com/devtron-labs/sprint-tasks/issues/2685
Type of change
How Has This Been Tested?
Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration
Checklist: