Feature: Segregate the CVE on the basis of severity (LOW,MEDIUM,HIGH,CRITICAL ) of trivy scanned result on Devtron UI.

[ajaydevtron]

🔖 Feature description

Currently we club the (HIGH,CRITICAL) vulnerabilities and show the count on following pages.

1. On Build page

2. On Security page (Global configuration)

3. On Deployment trigger page

But while scanning manually image we are getting the following count of each severity and this correct result we are showing on only one place at app details page of Devtron (after using SCAN_V2_ENABLED in orchestrator , ENABLE_RESOURCE_SCAN and ENABLE_RESOURCE_SCAN_V2 in dashboard ) as we can see here

Total: 243 (UNKNOWN: 0, LOW: 179, MEDIUM: 30, HIGH: 33, CRITICAL: 1)

🎤 Pitch / Usecases

We also wanted to add the security enforcement on deployment if any image have critical vulnerabilities but right now it is also including the HIGH in count.

🔄️ Alternative

No response

👀 Have you spent some time to check if this issue has been raised before?

• I checked and didn't find similar issue

🏢 Have you read the Code of Conduct?

• I have read the Code of Conduct

AB#10189

[azure-boards]

❌ There was a problem linking to Azure Boards work item(s):

• 10189

Please check the IDs and try again using the AB# syntax. Learn more

[azure-boards]

❌ There was a problem linking to Azure Boards work item(s):

• 10189

Please check the IDs and try again using the AB# syntax. Learn more

[ajaydevtron]

Duplicate of #4166