Commit 40a57f28 authored by Saikat Sarkar's avatar Saikat Sarkar

Telemetry of false-positive flag for vulnerability_finding

parent 1b70d217
...@@ -269,11 +269,21 @@ module Security ...@@ -269,11 +269,21 @@ module Security
records.uniq! records.uniq!
Vulnerabilities::Flag.insert_all(records) if records.present? Vulnerabilities::Flag.insert_all(records) if records.present?
track_events(records) if records.present?
end end
rescue StandardError => e rescue StandardError => e
Gitlab::ErrorTracking.track_exception(e, project_id: project.id, pipeline_id: pipeline.id) Gitlab::ErrorTracking.track_exception(e, project_id: project.id, pipeline_id: pipeline.id)
end end
def track_events(records)
records.each do |record|
Gitlab::Tracking.event(
self.class.to_s, 'flag_vulnerability', label: record[:flag_type].to_s
)
end
end
def update_vulnerability_links_info def update_vulnerability_links_info
timestamps = { created_at: Time.current, updated_at: Time.current } timestamps = { created_at: Time.current, updated_at: Time.current }
......
...@@ -2,7 +2,7 @@ ...@@ -2,7 +2,7 @@
require 'spec_helper' require 'spec_helper'
RSpec.describe Security::StoreReportService, '#execute' do RSpec.describe Security::StoreReportService, '#execute', :snowplow do
using RSpec::Parameterized::TableSyntax using RSpec::Parameterized::TableSyntax
let_it_be(:user) { create(:user) } let_it_be(:user) { create(:user) }
...@@ -67,7 +67,19 @@ RSpec.describe Security::StoreReportService, '#execute' do ...@@ -67,7 +67,19 @@ RSpec.describe Security::StoreReportService, '#execute' do
context 'vulnerability flags' do context 'vulnerability flags' do
it 'inserts all finding flags' do it 'inserts all finding flags' do
expect { subject }.to change(Vulnerabilities::Flag, :count).by(finding_flags) expect { subject }.to change { Vulnerabilities::Flag.count }.by(finding_flags)
end
it 'tracks the snowplow event' do
subject
if case_name == 'with vulnerability flags'
expect_snowplow_event(
category: 'Security::StoreReportService',
action: 'flag_vulnerability',
label: 'false_positive'
)
end
end end
context 'with vulnerability_flags disabled' do context 'with vulnerability_flags disabled' do
...@@ -76,7 +88,13 @@ RSpec.describe Security::StoreReportService, '#execute' do ...@@ -76,7 +88,13 @@ RSpec.describe Security::StoreReportService, '#execute' do
end end
it 'does not insert any vulnerability flag' do it 'does not insert any vulnerability flag' do
expect { subject }.not_to change(Vulnerabilities::Flag, :count) expect { subject }.to change { Vulnerabilities::Flag.count }.by(0)
end
it 'does not track a snowplow event' do
subject
expect_no_snowplow_event
end end
end end
end end
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment