Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
GitLab / Govern:Threat Insights Features & Demos / 22 Sep 2023
GitLab / Govern:Threat Insights Features & Demos / 22 Sep 2023
Previous Meeting
Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: BE: Demo hasMergeRequest filter for Vulnerabilities GraphQL API

Description

We have added the `has_merge_request` filter for the vulnerabilities GraphQL API and it is available to use from GitLab 16.4.

API link: https://docs.gitlab.com/ee/api/graphql/reference/#queryvulnerabilities

GitLab issue: https://gitlab.com/gitlab-org/gitlab/-/issues/371313

Demo project: https://gitlab.com/gitlab-org/govern/threat-insights-demos/personal-test-projects/verify-371313-bala

A

Right, hi, everyone. This is Bala Kumar senior, back-end engineer from threat insights. Today we are going to see a demo of the as merge request, filter for the vulnerabilities graphql API.

A

So for demoing, this API I've set up a example project and, as you can see, for the default branch and run the pipeline and uh on the pipeline security tab, we can see that there are two vulnerabilities, critical and low similarities and for the vulnerability with critical severity. I have gone ahead and created a resolve with Mr. So we see that this Mr is being created and for the vulnerability with a lower severity. There are no Solutions, and so uh we there are no Mrs for that.

A

So to see a demo of it, I'm going to use the graphql UI and the full path is given to the demo project, and this is the vulnerabilities API, and this is the feature that we have built so I'm going to set it to false, run it and see that it is returning me.

A

The vulnerabilities which have this area are too low and just going to toggle into true and run it, and we can see that it is writtening me the vulnerability which has a critical severity and which, which has a much request, uh set up for it.

A

uh So this is the API uh the back end for it is uh completed and it is available from 16.4.

A

uh So the aim of this API is to support the front end uh for the feature which is in development. The front end feature is in development, uh so once the front end is completed, it will be using this particular API and we'll be making use of this additional activity filters for ASMR and does not have Mr thanks for watching this video with me and have a good day.