feat(hosts): show affected hosts for CVE details #85

Merged
simon merged 1 commit from feat/vulnerability-affected-hosts into main 2026-05-24 10:21:26 +00:00
Owner

Summary

  • add an instance-scoped server action for other hosts affected by a selected CVE
  • show those hosts in the host vulnerability detail dialog with host links, OS, package count, fix status, and last seen
  • extend the database-backed host vulnerability E2E coverage

Validation

  • pnpm --dir apps/web lint -- 'app/(dashboard)/hosts/[id]/vulnerabilities-tab.tsx' lib/actions/vulnerabilities.ts lib/actions/vulnerabilities-core.ts tests/e2e/hosts/vulnerabilities.spec.ts
  • pnpm --dir apps/web type-check
  • BETTER_AUTH_URL=http://localhost:3000 BETTER_AUTH_SECRET=test-secret pnpm --dir apps/web test:e2e tests/e2e/hosts/vulnerabilities.spec.ts

Release / image

  • Merge should trigger the normal web/bundle release and image publication flow; I will monitor checks and publication after merge.
## Summary - add an instance-scoped server action for other hosts affected by a selected CVE - show those hosts in the host vulnerability detail dialog with host links, OS, package count, fix status, and last seen - extend the database-backed host vulnerability E2E coverage ## Validation - `pnpm --dir apps/web lint -- 'app/(dashboard)/hosts/[id]/vulnerabilities-tab.tsx' lib/actions/vulnerabilities.ts lib/actions/vulnerabilities-core.ts tests/e2e/hosts/vulnerabilities.spec.ts` - `pnpm --dir apps/web type-check` - `BETTER_AUTH_URL=http://localhost:3000 BETTER_AUTH_SECRET=test-secret pnpm --dir apps/web test:e2e tests/e2e/hosts/vulnerabilities.spec.ts` ## Release / image - Merge should trigger the normal web/bundle release and image publication flow; I will monitor checks and publication after merge.
feat(hosts): show affected hosts for CVE details
All checks were successful
PR Checks (Docker images) / Ansible API contract (pull_request) Successful in 6s
SAST / crypto-lint (no weak hashes / ciphers) (pull_request) Successful in 7s
SAST / trivy (filesystem) (pull_request) Successful in 19s
SAST / semgrep (pull_request) Successful in 35s
SAST / trivy (config / IaC) (pull_request) Successful in 17s
Secret Scan / gitleaks (pull_request) Successful in 11s
Conventional PR title / Conventional PR title (pull_request) Successful in 0s
SAST / gosec (agent) (pull_request) Successful in 1m13s
SAST / gosec (ingest) (pull_request) Successful in 1m16s
PR Checks (Docker images) / Ingest Docker image (pull_request) Successful in 1m43s
PR Checks (Docker images) / Ansible API Docker image (pull_request) Successful in 1m45s
PR Checks (Web) / Web (lint / type-check / build) (pull_request) Successful in 2m40s
PR Checks (Docker images) / Web Docker image (pull_request) Successful in 2m44s
100cdd8c77
simon merged commit 48ecfbc6de into main 2026-05-24 10:21:26 +00:00
simon deleted branch feat/vulnerability-affected-hosts 2026-05-24 10:21:26 +00:00
Sign in to join this conversation.
No reviewers
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
carrtech/ct-ops!85
No description provided.