This RFE proposes adding two new columns to the vulnerability report to provide more comprehensive and actionable data for users. The current report lacks detailed information about the exact location of affected components and a clear indication of the overall risk priority, which makes it challenging for users to prioritize vulnerabilities effectively.

Problem Statement

The current vulnerability report format does not include information needed for efficient vulnerability management. Specifically:

• The report lacks a column to show the exact file path or location of a vulnerable component within a container image. As shown in the provided location.PNG image, this information is available in the UI but is not exported in the report. 

• • Location: This column will display the full file path or directory of the affected component for each vulnerability. If a single vulnerability affects multiple components, the report should list each specific location. This aligns with the data displayed in the UI.
• The report does not display the Risk Priority score, as shown in the Risk_score.PNG image. This numerical risk score, calculated by the scanner, is crucial for helping users quickly assess the overall severity of an image's vulnerabilities.

• • Risk Priority: This column will display the overall numerical Risk Priority score for the image, as calculated by the scanner. This score will provide a quick, at-a-glance metric for the overall risk level of the image.