fleet icon indicating copy to clipboard operation
fleet copied to clipboard

Published 20 hours ago verified publisher icon fleetdm

Software search bar on host details page does not display correct results

Open qa-wolf[bot] opened this issue 7 months ago • 6 comments

Steps to reproduce:

  1. Log in as admin
  2. Navigate to Hosts
  3. Select a host
  4. Navigate to the software tab on the Host details page
  5. Search for software using the search bar (NOTE: to reproduce the software must have a vulnerability associated with it. Search for the software by name and it will return no results) Expected: Software matching the search term should appear as a result Actual: No results found Video: https://www.loom.com/share/c29495d95fef40c0bedb1ebd6a5c190d (https://www.loom.com/share/c29495d95fef40c0bedb1ebd6a5c190d)

Searching for any software that has an associated vulnerability returns no results.

https://github.com/user-attachments/assets/6681d529-8471-4c0b-bd2c-ea9b929a462a

qa-wolf[bot] avatar Apr 11 '25 15:04 qa-wolf[bot]

Was able to reproduce in my environment.

If the software title has a vulnerability associated with it, searching for the software title by name or CVE returns no results.

jmwatts avatar Apr 11 '25 16:04 jmwatts

Just want to double check, this is installed software, not pending for install or vpp? As part of https://github.com/fleetdm/fleet/issues/27745 we stated that we don't scan for vulnerabilities for pending software. Which means this is going to impact search

ksykulev avatar Apr 11 '25 19:04 ksykulev

@ksykulev this is not pending install. This is software that exists on the host and has a vulnerability associated with it.

jmwatts avatar Apr 11 '25 19:04 jmwatts

Is it vpp software though?

ksykulev avatar Apr 11 '25 19:04 ksykulev

@ksykulev no

jmwatts avatar Apr 11 '25 19:04 jmwatts

Please add your planning poker estimate with Zenhub @ksykulev

mostlikelee avatar Apr 11 '25 22:04 mostlikelee

QA Notes

  1. Log in as admin
  2. Navigate to Hosts
  3. Select a host
  4. Navigate to the software tab on the Host details page
  5. Search for software using the search bar
  • [x] Vulnerable software matching a string search term that exists in the software name should appear as a result
  • [x] Vulnerable software matching CVE string or substring should appear as a result
  • [x] Vulnerable software matching a string search term that exists in the software name, that is also "Available to install", should appear as a result
  • [x] Non-vulnerable software matching a string search term that exists in the software name should appear as a result
  • [x] Non-vulnerable software matching a string search term that exists in the software name, that is also "Available to install", should appear as a result

jmwatts avatar Apr 15 '25 17:04 jmwatts

Search bar refined, Vulnerability in sight, Users find peace of mind.

fleet-release avatar May 22 '25 19:05 fleet-release

Search bar to reveal, Vulnerabilities heal, Trust in Fleet is real.

fleet-release avatar Jun 17 '25 21:06 fleet-release

Fix in code, like a bridge, Guides through cloud city data, No more lost in search.

fleet-release avatar Jun 17 '25 21:06 fleet-release