Add docs for cluster detail page vulnerabilities

- the security tab was added

Add docs for cluster detail page vulnerabilities
- the security tab was added
16cd8077 · Alexander Turinske · Nick Gaskill · 73800448 · 16cd8077 · 16cd8077
Commit 16cd8077 authored Feb 07, 2022 by Alexander Turinske Committed by Nick Gaskill Feb 07, 2022
4 changed files
--- a/doc/user/application_security/cluster_image_scanning/index.md
+++ b/doc/user/application_security/cluster_image_scanning/index.md
@@ -301,7 +301,9 @@ the security vulnerabilities in your groups, projects, and pipelines.

 ## Interacting with the vulnerabilities

-After a vulnerability is found, you can [address it](../vulnerabilities/index.md).
+After you find a vulnerability, you can address it in the [vulnerability report](../vulnerabilities/index.md)
+or the [GitLab Agent's](../../clusters/agent/install/index.md#view-vulnerabilities-in-cluster-images)
+details section.

 ## Troubleshooting


--- a/doc/user/clusters/agent/index.md
+++ b/doc/user/clusters/agent/index.md
@@ -71,6 +71,7 @@ based on [Container Network Policies](../../application_security/policies/index.
 from GitLab CI/CD jobs while keeping the cluster's APIs safe and unexposed
 to the internet.
 - [Deploy the GitLab Runner in a Kubernetes cluster](https://docs.gitlab.com/runner/install/kubernetes-agent.html).
+- [Scan your Kubernetes cluster for vulnerabilities](../../application_security/cluster_image_scanning/index.md).

 See the [Agent roadmap](https://gitlab.com/groups/gitlab-org/-/epics/3329) to track its development.


--- a/doc/user/clusters/agent/install/index.md
+++ b/doc/user/clusters/agent/install/index.md
@@ -194,6 +194,23 @@ the first time or after more than an hour of inactivity.
 To check what else is planned for the Agent's UI and provide feedback,
 see the [related epic](https://gitlab.com/groups/gitlab-org/-/epics/4739).

+### View vulnerabilities in cluster images **(ULTIMATE)**
+
+> [Introduced](https://gitlab.com/groups/gitlab-org/-/epics/6346) in GitLab 14.8 [with a flag](../../../../administration/feature_flags.md) named `cluster_vulnerabilities`. Disabled by default.
+
+Users with at least the [Developer role](../../../permissions.md)
+can view cluster vulnerabilities. You can access them through the [vulnerability report](../../../application_security/vulnerabilities/index.md)
+or in your cluster's image through the following process:
+
+1. Configure [cluster image scanning](../../../application_security/cluster_image_scanning/index.md)
+   to your build process.
+1. Go to your Agent's configuration repository.
+1. On the left sidebar, select **Infrastructure > Kubernetes clusters**.
+1. Select the **Agent** tab.
+1. Select the Agent you want to see the vulnerabilities for.
+
+![Cluster Agent security tab UI](../../img/cluster_agent_security_tab_v14_8.png)
+
 ## Create multiple Agents

 You can create and install multiple Agents using the same process

--- a/doc/user/clusters/img/cluster_agent_security_tab_v14_8.png
+++ b/doc/user/clusters/img/cluster_agent_security_tab_v14_8.png