Bug reports jun26#136
Merged
Merged
Conversation
- Show colored report section label per vuln in the vuln list, with
live updates on edit/broadcast and a hash-based section color
- Persist reportSection in the update broadcast so the left table stays in sync
- API: create category by name when ID is missing, and rename when changed
- DocxUtils: match getImage links for any assessment id, and fix
${end-section} tag lookup for named sections
- Quiet pac4j logging to ERROR and extend CMS image reload timeout
Refactor uploadAssessment to process each CSV row independently so one bad row no longer aborts the whole upload. The servlet now returns added/warnings/errors as JSON. - Added: persisted assessments, shown with a new-tab Edit link (/portal/EditAssessment?action=get&aid=<id>) - Warnings: row was saved but had a non-fatal issue (unknown/invalid assessor is skipped rather than failing the row) - Errors: row could not be processed (missing columns, bad date, non-numeric days, malformed custom-fields JSON) Render the three result tables in assessmentUpload.jsp and populate them from the upload response in scheduling.js. Update the unit test for the new signature and added/warning/error split.
Add insertPageBreaks() to replace ${pageBreak} markers with page breaks
during report generation. Stop removing section tag elements in
removeSectionTagsOrRemoveSection when the section has vulns, since
getIndex already deletes the element at that index.
Adds a separate 'Export Vulnerabilities to CSV' action alongside the existing assessments export, backed by a new ManagerDashboardVulnerabilitiesCSV action that reuses the dashboard search logic. Renames the existing export button/handler to be assessments-specific and adds tests for both exports.
Split the dashboard's bottom table into Assessments and Vulnerabilities tabs. The vulnerabilities tab lists every vulnerability opened within the selected date range, matching the vulnerability CSV export. Clicking a vulnerability row opens the same slide-out detail panel used on Assessment > History, served by a new manager-only ManagerDashboardVulnDetail endpoint that renders vulnDetailPanel.jsp.
Ignore .zed/ and logs/ in git.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.