jfrog-idea-plugin icon indicating copy to clipboard operation
jfrog-idea-plugin copied to clipboard
verified publisher icon jfrog

Display packages infomation on the JFrog Plugin local page that doesn't contain vulnerabilities

Open sjl0825 opened this issue 3 years ago • 2 comments

Is your feature request related to a problem? Please describe. In previous versions of the JFrog Plugin, package information that does not contain vulnerabilities can be displayed on the local page. However, in version 2.1.1, package information that does not contain vulnerabilities is no longer displayed and only displays the package information that exists vulnerabilities. Is it possible to modify the local page display of the JFrog Plugin so that all packages can be displayed on the local page instead of only packages with vulnerabilities.

Describe the solution you'd like to see The JFrog Plugin local page displays all package information, including packages that have vulnerabilities and don't have vulnerabilities.

Describe alternatives you've considered No other alternative was found.

Additional context I applied the JFrog Plugin of the previous version and the latest version respectively in the PyCharm. In the previous version, all package information can be displayed on the local page, but in the latest version, only packages with vulnerabilities are displayed. Whether can modify the local page in JFrog Plugin so that all package pages can be displayed, including packages with and without vulnerabilities. The previous versions of the JFrog Plugin: image

The 2.1.1 version of the JFrog Plugin: image

sjl0825 avatar Mar 16 '23 06:03 sjl0825

Hello @sjl0825 and thank you for using the JFrog IDEA plugin.

The main purpose of this plugin is to show security vulnerabilities and license violations in your project. We have some big plans for the JFrog IDEA plugin in the near future. To make it more flexible we decided in v2 to show only the required information as mentioned above for a specific file or a Python environment. Also - you can see all of the installed Python packages in the "Python packages" tab of the Python plugin.

Could I ask why would you like to see the full dependency tree in this plugin?

yahavi avatar Mar 17 '23 15:03 yahavi

Hello @sjl0825 and thank you for using the JFrog IDEA plugin.

The main purpose of this plugin is to show security vulnerabilities and license violations in your project. We have some big plans for the JFrog IDEA plugin in the near future. To make it more flexible we decided in v2 to show only the required information as mentioned above for a specific file or a Python environment. Also - you can see all of the installed Python packages in the "Python packages" tab of the Python plugin.

Could I ask why would you like to see the full dependency tree in this plugin?

Hi @yahavi, Thank you for your update. My customer just wants the display on the local page to be consistent with the same as the JFrog IDEA Plugin of the previous version, hoping that the scanning information of all packages can be displayed.

sjl0825 avatar Mar 28 '23 07:03 sjl0825