Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-968

Improve Console Pipelines experience for policy reporting

XMLWordPrintable

    • Icon: Feature Feature
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • None
    • BU Product Work
    • False
    • Hide

      None

      Show
      None
    • False
    • 0% To Do, 0% In Progress, 100% Done
    • 0
    • Program Call

      Outcome/Feature Overview (aka. Goal Summary)  

      Enrich the OpenShift Pipelines experience for DevSecOps and Software Supply Chain Security use cases: specifically for tools that provide reports related to policy concerns like "roxctl image check" and "ec". 

      Goals (aka. expected user outcomes)

      Improving application developer experience when using OpenShift Pipelines and SSCS related policy reporting with discovery and visualization of artifacts and reports produced by a pipeline.   Our secure supply chain pipelines produce an existing set of artifacts ( roxctl check image output), but as users customize their pipelines or Red Hat or Partners adds new reports the experience should allow users to find, view and in some cases perform actions to fix the issues.

      Examples 

      • A user will be able to discover there are reports that they need to look at. This could apply to existing or new reports in customized pipelines 
      • A user will be able to view, or export (download) the artifact to a tool which can view the report or use the report in other systems. 
      • Visual markers and other hints there are reports for the users to act on may be provided in some cases
      • A user may be able to follow a link to a specific tool which can then be used to view and act on that report. 

       

      Requirements (aka. Acceptance Criteria):

      • Output Tab in the Pipelines dynamic plugin for security and policy reporting
      • A mechanism or convention for Pipeline authors (customization and partners) to annotate their Pipelines output for discovery, listing or visualization by the UX in the above Output Tab

              karthik.jk Karthik Jeeyar
              bsutter@redhat.com Burr Sutter
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated: