[Cloud Security] [Findings] [Vulnerabilities] Vulnerabilities Table by opauloh · Pull Request #154388 · elastic/kibana

opauloh · 2023-04-04T19:48:56Z

Summary

Ticket: #150510

This PR adds the Vulnerability Management table to the Findings page - Vulnerabilities tab. It also

Fetches results from the logs-cloud_security_posture.vulnerabilities-latest.
Uses EuiGrid component
Has sorting and pagination controls (it shares page size state with configurations findings)
All columns except the Actions column are sortable
Items per page to default to 10, with options of 10, 25, 100
Add an Empty results message in case of no results

This PR also added two new hooks:

useCloudPostureTable: Hook for managing common table state and methods for Cloud Posture
useDataViewForIndexPattern: Hook that extracts data view from the common logs-* and filters the fields to narrow to a specific index pattern. This allows us to have a search bar and filter working without the need to create a Data View.

Todo: Add tests for the vulnerability table

Screenshots

Initial State

Filtering

Empty State (Sharing component with Configurations tab)

Sorting

x-pack/plugins/cloud_security_posture/common/constants.ts

x-pack/plugins/cloud_security_posture/public/components/vulnerability_badges.tsx

...configurations/latest_findings_by_resource/resource_findings/resource_findings_container.tsx

...ins/cloud_security_posture/public/pages/vulnerabilities/hooks/use_latest_vulnerabilities.tsx

x-pack/plugins/cloud_security_posture/public/pages/vulnerabilities/utils.ts

x-pack/plugins/cloud_security_posture/public/pages/vulnerabilities/vulnerabilities.tsx

Omolola-Akinleye · 2023-04-10T13:47:05Z

x-pack/plugins/cloud_security_posture/public/components/vulnerability_badges.tsx

  score: float;
-  version: CVSSVersion;
-  color: string;
+  version?: string;


why would a vulnerability score badge have a score but not have a version?

x-pack/plugins/cloud_security_posture/public/pages/vulnerabilities/vulnerabilities.tsx

x-pack/plugins/cloud_security_posture/server/create_indices/create_indices.ts

Omolola-Akinleye · 2023-04-10T14:17:11Z

x-pack/plugins/cloud_security_posture/public/pages/vulnerabilities/vulnerabilities.tsx

+            <h2>
+              <FormattedMessage
+                id="xpack.csp.findings.resourceFindings.noFindingsTitle"
+                defaultMessage="There are no Findings"


Nit: Findings are generic for configurations or vulnerabilities. Maybe here we can be more specific with There are no vulnerabilities. This probably needs a second opinion from the product

Omolola-Akinleye

LGTM!

Omolola-Akinleye · 2023-04-12T01:26:06Z

@opauloh if update your PR with the latest changes from Master. The FTR test will be fixed.

kibana-ci · 2023-04-12T15:24:44Z

💛 Build succeeded, but was flaky

Failed CI Steps

FTR Configs #43

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id	before	after	diff
`cloudSecurityPosture`	148	157	+9

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id	before	after	diff
`cloudSecurityPosture`	167.9KB	174.4KB	+6.5KB

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id	before	after	diff
`cloudSecurityPosture`	11.4KB	11.5KB	+135.0B

Unknown metric groups

ESLint disabled line counts

id	before	after	diff
`securitySolution`	433	436	+3

Total ESLint disabled count

id	before	after	diff
`securitySolution`	512	515	+3

History

💔 Build #119226 failed 1b7afe8
💛 Build #119052 was flaky 070a839
💚 Build #117856 succeeded 7b816e3
💔 Build #117851 failed 7d7ed66
💔 Build #117819 failed 9c4c3cc

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

opauloh added 29 commits February 28, 2023 17:30

renaming route to configurations

95260d5

moving findings to configurations

500ea44

adding tabs to findings page

b59284f

adding vulnerabilities tab content placeholder

57ebe16

fix i18n

3365ef7

remove unused translation

01bb8fe

remove unused translation

191c44a

WIP: vulnerabilities table

5e2385c

fixing test subj placement

4857900

Merge branch 'main' into vuln/split-findings-page

bffd4a6

Merge branch 'vuln/split-findings-page' into vuln/table

b5f2b9b

Merge branch 'main' into vuln/table

1638246

WIP: fix update index safe

2495264

Merge branch 'main' into vuln/table

70491f5

wip moving common files

091e91f

updating index pattern

0abf0cb

wip: moving common files

a594a3e

wip: vulnerability table

b8ef0b0

Merge branch 'main' into vuln/table

f44a72c

data view index pattern

87f7165

add new helper hook

f6fc8a0

add posture table helper hook

befe2c3

moving files

c1a0de4

updating latest findings table to new hook

b9fb3ec

moving files

6b0f54f

vulnerabilities

87623e8

add no results components

c286e9d

adding method description

4f575b3

adding wrapper and removing null

f0c06bc

opauloh added the release_note:feature Makes this part of the condensed release notes label Apr 4, 2023

opauloh added 3 commits April 4, 2023 13:33

fix casing

9c4c3cc

add badges

7d7ed66

Merge branch 'main' into vuln/table

7b816e3

opauloh requested a review from Omolola-Akinleye April 5, 2023 17:16

opauloh mentioned this pull request Apr 5, 2023

[Cloud Posture] onboarding prompts for vul_mgmt #154118

Merged