Skip to content

most recent note: show date/author #12329

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Maffooch merged 2 commits into from
Apr 29, 2025
Merged

most recent note: show date/author #12329

Maffooch merged 2 commits into from
Apr 29, 2025

Conversation

@valentijnscholten
Copy link
Member

@valentijnscholten valentijnscholten commented Apr 28, 2025
edited
Loading

Adds the author and date to the most recent note display in lists of findings.

The js/css lib used doesn't support styling the content, this is what it looks like:

image

The unrelated commit is a Ruff fix that was automatically applied. When I remove it, it complains that it is a Ruff violation :-) So I left it.

@dryrunsecurity
Copy link

dryrunsecurity bot commented Apr 28, 2025
edited
Loading

DryRun Security

This pull request introduces potential information exposure risks through enhanced metadata display in a template and may reveal undefined name warnings in a test file due to linter suppression removal.

💭 Unconfirmed Findings (2)
Vulnerability Potential Sensitive Information Exposure
Description In the file 'dojo/templates/dojo/findings_list_snippet.html', the note display now explicitly shows author and timestamp metadata in a client-side tooltip, potentially revealing more detailed information about findings and their documentation.
Vulnerability Potential Exposure of Undefined Name Warnings
Description In the file 'tests/import_scanner_test.py', the removal of a linter suppression directive may now expose code quality warnings related to undefined names or potential import issues.

All finding details can be found in the DryRun Security Dashboard.

@Maffooch Maffooch added this to the 2.46.0 milestone Apr 28, 2025
mtesauro
mtesauro approved these changes Apr 29, 2025
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@Maffooch Maffooch merged commit 3c9e7ff into DefectDojo:bugfix Apr 29, 2025
77 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mtesauro mtesauro mtesauro approved these changes

@dogboat dogboat dogboat approved these changes

@Maffooch Maffooch Maffooch approved these changes

+1 more reviewer

@hblankenship hblankenship hblankenship approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

integration_tests ui

Projects

None yet

Milestone

2.46.0

Development

Successfully merging this pull request may close these issues.

5 participants

@valentijnscholten @mtesauro @dogboat @hblankenship @Maffooch