Merge branch 'add_nil_scanned_resources_csv_path_223673' into 'master'

Add scannedResourcesCsvPath to securityReportSummary See merge request gitlab-org/gitlab!35949

Merge branch 'add_nil_scanned_resources_csv_path_223673' into 'master'
Add scannedResourcesCsvPath to securityReportSummary See merge request gitlab-org/gitlab!35949
f4a310ef · Peter Leitzen · ccbd9099 · b744251e · f4a310ef · f4a310ef
Commit f4a310ef authored Jul 06, 2020 by Peter Leitzen
8 changed files
--- a/doc/api/graphql/reference/gitlab_schema.graphql
+++ b/doc/api/graphql/reference/gitlab_schema.graphql
@@ -11799,6 +11799,11 @@ type SecurityReportSummarySection {
  """
  scannedResourcesCount: Int

+  """
+  Path to download all the scanned resources in CSV format
+  """
+  scannedResourcesCsvPath: String
+
  """
  Total number of vulnerabilities
  """

--- a/doc/api/graphql/reference/gitlab_schema.json
+++ b/doc/api/graphql/reference/gitlab_schema.json
@@ -34498,6 +34498,20 @@
              "isDeprecated": false,
              "deprecationReason": null
            },
+            {
+              "name": "scannedResourcesCsvPath",
+              "description": "Path to download all the scanned resources in CSV format",
+              "args": [
+
+              ],
+              "type": {
+                "kind": "SCALAR",
+                "name": "String",
+                "ofType": null
+              },
+              "isDeprecated": false,
+              "deprecationReason": null
+            },
            {
              "name": "vulnerabilitiesCount",
              "description": "Total number of vulnerabilities",
--- a/doc/api/graphql/reference/index.md
+++ b/doc/api/graphql/reference/index.md
@@ -1701,6 +1701,7 @@ Represents a section of a summary of a security report
 | Name  | Type  | Description |
 | ---   |  ---- | ----------  |
 | `scannedResourcesCount` | Int | Total number of scanned resources |
+| `scannedResourcesCsvPath` | String | Path to download all the scanned resources in CSV format |
 | `vulnerabilitiesCount` | Int | Total number of vulnerabilities |

 ## SentryDetailedError

--- a/ee/app/graphql/types/security_report_summary_section_type.rb
+++ b/ee/app/graphql/types/security_report_summary_section_type.rb
@@ -9,5 +9,6 @@ module Types
    field :vulnerabilities_count, GraphQL::INT_TYPE, null: true, description: 'Total number of vulnerabilities'
    field :scanned_resources_count, GraphQL::INT_TYPE, null: true, description: 'Total number of scanned resources'
    field :scanned_resources, ::Types::ScannedResourceType.connection_type, null: true, description: 'A list of the first 20 scanned resources'
+    field :scanned_resources_csv_path, GraphQL::STRING_TYPE, null: true, description: 'Path to download all the scanned resources in CSV format'
  end
 end
--- a/ee/app/services/security/report_summary_service.rb
+++ b/ee/app/services/security/report_summary_service.rb
@@ -30,6 +30,8 @@ module Security
          response[:scanned_resources_count] = scanned_resources_counts[report_type.to_s]
        when :scanned_resources
          response[:scanned_resources] = scanned_resources[report_type.to_s]
+        when :scanned_resources_csv_path
+          nil
        end
      end
    end

--- a/ee/changelogs/unreleased/add_nil_scanned_resources_csv_path_223673.yml
+++ b/ee/changelogs/unreleased/add_nil_scanned_resources_csv_path_223673.yml
+---
+title: Add NULL value scannedResourcesCsvUrl to securityReportSummary
+merge_request: 35949
+author:
+type: added
--- a/ee/spec/requests/api/graphql/project/pipeline/security_report_summary_spec.rb
+++ b/ee/spec/requests/api/graphql/project/pipeline/security_report_summary_spec.rb
@@ -63,4 +63,8 @@ RSpec.describe 'Query.project(fullPath).pipeline(iid).securityReportSummary' do

    expect(dast_scanned_resources.length).to eq(20)
  end
+
+  it 'returns nil for the scannedResourcesCsvPath' do
+    expect(security_report_summary.dig('dast', 'scannedResourcesCsvPath')).to be_nil
+  end
 end
--- a/ee/spec/services/security/report_summary_service_spec.rb
+++ b/ee/spec/services/security/report_summary_service_spec.rb
@@ -73,7 +73,7 @@ RSpec.describe Security::ReportSummaryService, '#execute' do
  context 'All fields are requested' do
    let(:selection_information) do
      {
-        dast: [:scanned_resources_count, :vulnerabilities_count, :scanned_resources],
+        dast: [:scanned_resources_count, :vulnerabilities_count, :scanned_resources, :scanned_resources_csv_path],
        sast: [:scanned_resources_count, :vulnerabilities_count],
        container_scanning: [:scanned_resources_count, :vulnerabilities_count],
        dependency_scanning: [:scanned_resources_count, :vulnerabilities_count]
@@ -102,6 +102,10 @@ RSpec.describe Security::ReportSummaryService, '#execute' do
      expect(result[:dast][:scanned_resources].length).to eq(20)
    end

+    it 'returns the scanned_resources_csv_path as nil' do
+      expect(result[:dast][:scanned_resources_csv_path]).to be_nil
+    end
+
    context 'When no security scans ran' do
      let(:pipeline) { create(:ci_pipeline, :success) }