sbom dependency tree enhancements #1539

avzz-19 · 2025-03-03T08:47:40Z

Fixes:

View more for children shows because dependency count is wrong from backend sometimes (backend bug)
Proper skeleton loader in list view and tree view
Add error message/notification for wrong parent through URL in overview page
Add hover state text for overview page highlighted return icon → “This is the component from the tree that you are currently viewing“
Enhance test cases and add new test case for overview page parents api, view more in children. Add test case for third level children.
Use purl format in tree node labels
Fix duplicate key issues
Fix issues with version and latestVersion where latestVersion > version

coderabbitai · 2025-03-03T08:47:48Z

Walkthrough

This update modifies multiple SBOM components. In component details, a new NotificationService is injected to handle error notifications while outdated getters are removed. The summary and status components now leverage new computed properties with semver-based comparisons. UI templates for empty-loading views, component trees, and skeleton loaders have been restructured. The SBOM component model provides cleaned version strings and the factory produces a reformatted component reference. Tests and translation files have also been updated, and a new semver dependency was added to the devDependencies.

Changes

File(s)	Change Summary
`app/components/sbom/.../component-details/overview/index.ts`, `app/components/sbom/.../component-details/summary/index.ts`	Injected `NotificationService` and removed old getters in overview; added computed property `isLatestVersionLess` and enforced non-null `sbomComponent` in summary.
`app/components/sbom/.../component-status/index.ts`	Introduced new computed property `isOutdated` using semver for version comparison.
`app/components/sbom/.../empty-loading-view/index.hbs`, `app/components/sbom/.../empty-loading-view/index.scss`	Updated CSS classes and attributes: adjusted conditional classes, changed loading SVG height from '50%' to '40%', removed padding, and added a `.list` class with no border.
`app/components/sbom/.../component-tree/index.hbs`	Simplified conditional logic for node classes, removed BOM ref from labels, wrapped highlighted icons with tooltips, and updated "Load More" event handling.
`app/components/sbom/.../component-tree/index.ts`	Refactored methods for margin, view-more logic, child loading, node scrollability, and API data transformation; updated signatures and error handling logic.
`app/components/sbom/.../scan-details/index.ts`	Replaced the `dependencyCount` property with a new `count` property in the TreeNodeDataObject interface.
`app/components/sbom/.../skeleton-loader-list/index.hbs`, `app/components/sbom/.../skeleton-loader-list/index.ts`	Changed layout from an `<AkStack>` to an `<AkTable>`; added intl-based getter for columns and a loadingMockData getter for mock loaders.
`app/components/sbom/.../skeleton-loader-tree/index.hbs`, `app/components/sbom/.../skeleton-loader-tree/index.scss`, `app/components/sbom/.../skeleton-loader-tree/index.ts`	Restructured layout to incorporate an `<AkTree>` with new nested stacks; added styles for tree connectors and nodes; introduced properties `expanded` and `skeletonTreeData` alongside a new noop method.
`app/components/sbom/.../skeleton-loader/index.hbs`	Modified the loading SVG height attribute from '200px' to '0px'.
`app/models/sbom-component.ts`	Removed the `isOutdated` getter; added `cleanVersion` and `cleanLatestVersion` getters to return formatted version strings.
`mirage/factories/sbom-component.ts`	Updated the `bom_ref()` method by removing an old namespace, adding 'nuget', and reformatting the return string to use a group-based format.
`package.json`	Added a new devDependency: `"semver": "^7.7.1"`.
`tests/acceptance/sbom-test.js`, `tests/integration/components/sbom/scan-details/component-tree-test.js`	Introduced a `NotificationsStub` class with error, success, and info methods; added tests for API-loaded components, tree structure expansion, and "View More" functionality.
`translations/en.json`, `translations/ja.json`	Added new translation entries: `"highlightedNodeTooltip"` and `"parentComponentNotFound"`.

Suggested reviewers

future-pirate-king

Poem

I'm a rabbit in the code grove, hopping light and free,
Skipping past old getters with a swift notification spree,
Trees and loaders reformed, my whiskers twitch in delight,
Semver carrots crunch in sync, making every check just right,
My paws tap new tests and translations, joyous and fleet,
Celebrating every refactor with a happy, code-filled beat!
Hop on, fellow devs – our changes make the garden complete!

Warning

There were issues while running some tools. Please review the errors and either fix the tool’s configuration or disable the tool if it’s a critical failure.

🔧 ESLint

If the error stems from missing dependencies, add them to the package.json file. For unrecoverable errors (e.g., due to private dependencies), disable the tool in the CodeRabbit configuration.

npm warn config production Use --omit=dev instead.
npm error code ERESOLVE
npm error ERESOLVE could not resolve
npm error
npm error While resolving: @storybook/[email protected]
npm error Found: [email protected]
npm error node_modules/ember-source
npm error dev ember-source@"~5.12.0" from the root project
npm error peer ember-source@">= 3.28.12" from @ember-data/[email protected]
npm error node_modules/@ember-data/tracking
npm error peer @ember-data/tracking@"5.3.9" from @ember-data/[email protected]
npm error node_modules/@ember-data/model
npm error peer @ember-data/model@"5.3.9" from @ember-data/[email protected]
npm error node_modules/@ember-data/debug
npm error @ember-data/debug@"5.3.9" from [email protected]
npm error node_modules/ember-data
npm error 2 more (ember-cli-mirage, ember-data)
npm error peer @ember-data/tracking@"5.3.9" from @ember-data/[email protected]
npm error node_modules/@ember-data/store
npm error peer @ember-data/store@"5.3.9" from @ember-data/[email protected]
npm error node_modules/@ember-data/adapter
npm error @ember-data/adapter@"5.3.9" from [email protected]
npm error node_modules/ember-data
npm error 8 more (@ember-data/debug, @ember-data/graph, ...)
npm error 1 more (ember-data)
npm error 24 more (@ember/render-modifiers, @ember/test-helpers, ...)
npm error
npm error Could not resolve dependency:
npm error peer ember-source@"~3.28.1 || ^4.0.0" from @storybook/[email protected]
npm error node_modules/@storybook/ember
npm error dev @storybook/ember@"8.4.6" from the root project
npm error
npm error Conflicting peer dependency: [email protected]
npm error node_modules/ember-source
npm error peer ember-source@"~3.28.1 || ^4.0.0" from @storybook/[email protected]
npm error node_modules/@storybook/ember
npm error dev @storybook/ember@"8.4.6" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /.npm/_logs/2025-03-06T06_13_28_683Z-eresolve-report.txt
npm error A complete log of this run can be found in: /.npm/_logs/2025-03-06T06_13_28_683Z-debug-0.log

✨ Finishing Touches

📝 Generate Docstrings

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Generate unit testing code for this file.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai generate unit testing code for this file.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and generate unit testing code.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai generate docstrings to generate docstrings for this PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (`.coderabbit.yaml`)

You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
Please see the configuration documentation for more information.
If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

cloudflare-workers-and-pages · 2025-03-03T08:52:25Z

Deploying irenestaging with Cloudflare Pages

Latest commit:	`5722ba2`
Status:	✅ Deploy successful!
Preview URL:	https://a4861a37.irenestaging.pages.dev
Branch Preview URL:	https://pd-1702-sbom-dependency-tree.irenestaging.pages.dev

View logs

cypress · 2025-03-03T08:58:35Z

Irene Run #617

Run Properties: Passed #617 • 4be04fe9a5 ℹ️: Merge 3f07a350ff5112dc304c1c2e13753fc96269b315 into e062863ac864cc20911f1ba72c12...

Project	`Irene`
Branch Review	`PD-1702-sbom-dependency-tree-enhancements`
Run status	`Passed #617`
Run duration	`05m 15s`
Commit	`4be04fe9a5 ℹ️: Merge 3f07a350ff5112dc304c1c2e13753fc96269b315 into e062863ac864cc20911f1ba72c12...`
Committer	`Avi Shah`
View all properties for this run ↗︎

Test results
Failures	`0`
Flaky	`0`
Pending	`0`
Skipped	`0`
Passing	`32`
View all changes introduced in this branch ↗︎

coderabbitai

Actionable comments posted: 2

🧹 Nitpick comments (2)

app/components/sbom/empty-loading-view/index.hbs (1)
4-6: Potential whitespace issue in class names.

The multi-line format with whitespace at the end of lines could result in class names with extra spaces. While Handlebars typically handles this, it may cause issues if CSS selectors expect exact class name matches.
-    local-class='empty-loading-container 
-    {{if @skeleton "skeleton"}} 
-    {{if this.tree "" "list"}}'
+    local-class='empty-loading-container
+      {{if @skeleton " skeleton"}}
+      {{if this.tree "" " list"}}'
app/components/sbom/scan-details/skeleton-loader-list/index.ts (1)
27-29: Added mock data for skeleton loader.

Creating an array of empty objects for loading states is a simple but effective approach. Consider adding a constant for the number of skeleton rows instead of hardcoding the value.
-  get loadingMockData() {
-    return new Array(8).fill({});
-  }
+  readonly SKELETON_ROWS_COUNT = 8;
+
+  get loadingMockData() {
+    return new Array(this.SKELETON_ROWS_COUNT).fill({});
+  }

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between e062863 and 3f07a35.

⛔ Files ignored due to path filters (1)

package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (21)

app/components/sbom/component-details/overview/index.ts (2 hunks)
app/components/sbom/component-details/summary/index.ts (2 hunks)
app/components/sbom/component-status/index.ts (3 hunks)
app/components/sbom/empty-loading-view/index.hbs (2 hunks)
app/components/sbom/empty-loading-view/index.scss (1 hunks)
app/components/sbom/scan-details/component-tree/index.hbs (5 hunks)
app/components/sbom/scan-details/component-tree/index.ts (9 hunks)
app/components/sbom/scan-details/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader-list/index.hbs (1 hunks)
app/components/sbom/scan-details/skeleton-loader-list/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.scss (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader/index.hbs (1 hunks)
app/models/sbom-component.ts (1 hunks)
mirage/factories/sbom-component.ts (1 hunks)
package.json (1 hunks)
tests/acceptance/sbom-test.js (3 hunks)
tests/integration/components/sbom/scan-details/component-tree-test.js (1 hunks)
translations/en.json (2 hunks)
translations/ja.json (2 hunks)

✅ Files skipped from review due to trivial changes (1)

app/components/sbom/scan-details/skeleton-loader-tree/index.scss

⏰ Context from checks skipped due to timeout of 90000ms (8)

GitHub Check: Run E2E Tests (5)
GitHub Check: Run E2E Tests (4)
GitHub Check: Run E2E Tests (3)
GitHub Check: Run E2E Tests (2)
GitHub Check: Run E2E Tests (1)
GitHub Check: Publish to Cloudflare Pages
GitHub Check: Setup & Build Application
GitHub Check: Cloudflare Pages

🔇 Additional comments (53)

package.json (1)

185-185: Appropriate addition of semver library for version comparison operations.

Adding the semver library is a good choice for implementing the new version comparison features mentioned in the summary (isLatestVersionLess and isOutdated computed properties).
app/components/sbom/scan-details/skeleton-loader/index.hbs (1)

27-27:
❓ Verification inconclusive

Setting SVG height to 0px effectively hides the loading SVG.

Changing the loading SVG height from what was likely a larger value to 0px will hide the SVG while preserving the component structure. Consider whether a more semantic approach (like a boolean flag to show/hide the SVG) would be more maintainable in the long term.

🏁 Script executed:
#!/bin/bash
# Check if there are other components that might use this pattern or if there's a hide property
rg -A 2 -B 2 "@loadingSvgHeight" --type hbs
Length of output: 2083
Attention: Review the approach for toggling the SVG visibility in the skeleton loader component.

In app/components/sbom/scan-details/skeleton-loader/index.hbs, the attribute @loadingSvgHeight is set to '0px', which effectively hides the loading SVG.

A comparison with other components (e.g., app/components/sbom/app-scan/list/index.hbs and app/components/sbom/component-details/skeleton-loader/index.hbs) shows that a visible loading SVG normally has non-zero heights like '200px' or a fallback value such as '40%'.

To improve code clarity and maintainability, consider refactoring this approach by using a dedicated boolean flag to conditionally render or hide the SVG instead of relying on a height value of 0px.
app/components/sbom/empty-loading-view/index.scss (1)

12-15: Added "list" variant for the empty-loading-container.

The new .list class is properly aligned with the conditional class logic added in the template file.

app/components/sbom/empty-loading-view/index.hbs (1)

26-26: Reduced the default height of the loading SVG.

Changing the SVG height from 50% to 40% creates a more compact loading visualization. This change is consistent with the overall UI refinements being made to the loading components.

tests/integration/components/sbom/scan-details/component-tree-test.js (2)

168-173: Well-structured PURL generation from component data

The code creates a standardized Package URL (PURL) representation for SBOM components, which follows the format pkg:<type>/<namespace>/<name>@<version>. This provides better identification and standardization of components in the tree view.

175-175: Updated assertion to match new component display format

The test now correctly verifies that the node label displays the PURL format instead of just the component name, aligning with the implementation changes in the component tree.

translations/ja.json (2)

608-608: Added helpful tooltip for highlighted node

Good addition of tooltip text that helps users understand which component they're currently viewing in the tree.

1321-1321: Added error message for missing parent component

This translation handles the edge case when a parent component cannot be found, improving the user experience by providing clear error messaging.

app/components/sbom/scan-details/skeleton-loader-list/index.hbs (1)

1-10: Improved skeleton loader with more semantic markup

The skeleton loader has been refactored from a stack-based layout to a table-based layout, which better represents the data structure it's placeholder for. This change also likely makes the loading state more consistent with the loaded state's appearance.

Note that this implementation relies on properties defined in the component class (this.columns and this.loadingMockData), which should be properly implemented in the component's JavaScript/TypeScript file.

translations/en.json (2)

608-608: Good addition of descriptive tooltip text.

The new tooltip text clearly explains the highlighted node's significance to users, improving the user experience by providing contextual information.

1321-1321: Good error message for parent component lookup failures.

This error message provides clear feedback when a parent component reference cannot be found, which will help with debugging and user understanding.
app/models/sbom-component.ts (2)

61-63: Good addition of version string cleanup.

The cleanVersion getter appropriately handles string cleaning by trimming whitespace and removing surrounding double quotes, which will help with consistent version comparisons.

65-67:
✅ Verification successful

Good implementation of consistent version string cleaning.

The cleanLatestVersion getter follows the same pattern as cleanVersion, ensuring consistency in how version strings are processed before comparison. This approach improves the reliability of version comparison operations.

🏁 Script executed:
#!/bin/bash
# Search for where these new methods are used
echo "Checking where the new cleanVersion methods are being used..."
rg -A 2 "cleanVersion|cleanLatestVersion" --type ts
Length of output: 1959
Consistent Version String Cleaning Confirmed

The implementation of the cleanLatestVersion getter in app/models/sbom-component.ts is in line with the established pattern used in cleanVersion. Our verification shows that both methods are consistently utilized across multiple components (e.g., in the component summary and status checks), ensuring reliable version string processing for comparisons. Great work maintaining uniformity across the codebase.
app/components/sbom/scan-details/skeleton-loader-tree/index.ts (1)

9-22: Enhanced skeleton loader with improved tree structure representation.

The additions to the SbomScanDetailsSkeletonLoaderTreeComponent class improve the skeleton loader by better mirroring the structure of the actual component it's substituting for during loading.

Notable improvements:

The noop() method serves as a placeholder for event handlers

The expanded property initializes with a default expanded node

The skeletonTreeData property dynamically generates appropriate placeholder data based on whether a filtered tree is being displayed

These changes will create a more consistent user experience during component loading.

app/components/sbom/component-details/overview/index.ts (1)

123-124: Good addition of user feedback

The error notification provides better feedback to users when parent component verification fails, improving the overall user experience.

app/components/sbom/component-status/index.ts (3)

5-5: Good choice using semver for version comparison

The semver library is the standard solution for comparing semantic versions, making this implementation more reliable than string comparison.

21-39: Robust implementation of isOutdated computed property

The implementation correctly handles edge cases with appropriate null checks and invalid version handling before performing the semver comparison.

58-58: Proper usage of the new computed property

Replacing the direct access to component.isOutdated with the new computed property ensures consistent version comparison logic.
mirage/factories/sbom-component.ts (2)

33-34: Good addition of 'nuget' to supported namespaces

Adding 'nuget' improves the coverage of package ecosystems in the test factory.

35-38:
✅ Verification successful

Format change in bom_ref generation

The component reference format has changed from a version-based approach to a group-based format, which aligns with updates in the component model.

🏁 Script executed:
#!/bin/bash
# Verify that the new reference format is consistently used across the codebase
rg -A 3 "bom_ref" --type ts --glob "!mirage/factories/sbom-component.ts"
Length of output: 393
Confirmed: New Component Reference Format in mirage/factories/sbom-component.ts

The updated group-based format (${namespace}::${group}:${name}) is correctly implemented. Our verification showed that the only other bom_ref usage (in mirage/factories/sbom-vulnerability-audit.ts) remains contextually appropriate. No inconsistencies were found.
app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (3)

4-5: Good improvement to container width

Setting the stack to full width will ensure proper alignment with the parent container.

8-15: Enhanced skeleton loader structure

The new nested stack with appropriate spacing and alignment provides a cleaner skeleton structure matching the actual content layout.

17-28:
✅ Verification successful

Better tree representation with AkTree component

Using the AkTree component for the skeleton loader provides a more accurate representation of the actual component tree structure, improving the loading state UX.

🏁 Script executed:
#!/bin/bash
# Verify that the skeletonTreeData and noop methods are defined in the component
rg -A 10 "skeletonTreeData|noop" --type ts --glob "app/components/sbom/scan-details/skeleton-loader-tree/index.ts"
Length of output: 1360
Verified and Approved: Improved Skeleton Loader Implementation

The usage of the AkTree component in the skeleton loader now accurately reflects the final tree structure during loading. The properties used—skeletonTreeData (which generates placeholder nodes) and noop (serving as a no-op event handler)—have been confirmed in the component’s TypeScript file, ensuring the intended behavior.

File: app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (Lines 17–28)

Key Points:

The skeleton tree data is generated correctly.

The no-op handler is properly defined.

The revised structure provides a more faithful representation of the component’s state during loading.
app/components/sbom/component-details/summary/index.ts (4)

6-6: Added semver dependency for version comparison.

The addition of the semver library is appropriate for implementing proper semantic version comparison.

19-32: Well-implemented version comparison logic.

The new isLatestVersionLess computed property correctly compares versions using semver with appropriate null and validity checks. This approach safely handles edge cases where the latest version might be lower than the current version.

48-48: Improved version handling in component summary.

The component now uses cleaned version strings and conditional logic to handle the display of version information, which improves data quality in the UI.

Also applies to: 52-54

12-12:
✅ Verification successful

Type change for sbomComponent argument.

Changing the argument type from SbomComponentModel | null to non-nullable SbomComponentModel enforces that this component always receives a valid SBOM component. Ensure all parent components pass a non-null value.

🏁 Script executed:
#!/bin/bash
# Search for places that pass sbomComponent to this component
rg -A 3 "Sbom::ComponentDetails::Summary" | grep -B 2 -A 2 "sbomComponent"
Length of output: 718
Non-null SBOM component enforced successfully

The verification confirms that all usages of the Sbom::ComponentDetails::Summary component pass a valid, non-null sbomComponent value:

In app/components/sbom/component-details/overview/index.hbs, the component is invoked with @sbomComponent={{@sbomComponent}}.

The integration test in tests/integration/components/sbom/component-details/summary-test.js likewise provides a defined sbomComponent.

These usages align with the enforced non-nullable type (SbomComponentModel), ensuring that this component always receives a valid SBOM component. No further action is required.
app/components/sbom/scan-details/skeleton-loader-list/index.ts (2)

1-8: Added internationalization support.

Good addition of the IntlService to support localization of column headers in the skeleton loader.

9-25: Well-structured columns configuration.

The columns getter provides a clear structure for the table headers with appropriate i18n support. The width specification for the component name column improves layout consistency.

app/components/sbom/scan-details/component-tree/index.hbs (5)

66-69: Simplified tree node class condition.

The condition for the 'last-node' class has been simplified to only check node.dataObject.hasNextSibling, removing the dependency on this.hasMoreComponents. This makes the code clearer and more maintainable.

136-136: Simplified node label display.

Removed the bomRef from the node label display, showing only the component name. This makes the component tree more readable.

145-157: Enhanced UX with tooltip for highlighted node.

Replacing the simple AkStack with AkTooltip improves the user experience by providing contextual information for the highlighted component.

170-170: Updated event handler for loading more children.

Now passing the entire parent node object instead of just the key. This provides more context to the handler function.

180-180: Simplified node scrollability check.

The condition for checking if a node is scrollable has been simplified to only check node.parent, aligning with updates to the TreeNodeDataObject interface elsewhere in the codebase.

tests/acceptance/sbom-test.js (5)

41-59: Added NotificationsStub service for testing.

Good implementation of a stub service for testing notifications. This allows tests to verify that the correct error messages are displayed to users.

157-157: Registered NotificationsStub service.

Properly registered the NotificationsStub service in the test setup.

471-550: Comprehensive test for parent component loading.

This test thoroughly verifies the component tree functionality with parent components, including error handling for invalid parent IDs. Good coverage of both success and error paths.

552-636: Test coverage for multi-level component hierarchy.

Excellent test for verifying that the component tree correctly handles third-level dependencies and their expansion/collapse functionality.

638-711: Test for pagination in component children.

Well-structured test for the "View More" functionality, ensuring that additional children can be loaded and displayed properly in the component tree.

app/components/sbom/scan-details/component-tree/index.ts (14)

109-109: Confirm removal of hasMoreComponents check
By removing the hasMoreComponents condition, this logic now applies margin if depth is 1 and there is no next sibling, regardless of any remaining components. Please ensure this is intentional, as it can affect layout when there are more components to load.

163-168: Stricter early return conditions
This change provides a robust safeguard by checking for a valid node, dependency status, and parent reference before proceeding. It helps prevent errors and ensures correct logic flow.

185-185: Chaining isLastLoadedChild with hasMoreChildren
This conditional appears consistent and logically sound for determining when to show more child elements. No concerns here.

189-189: Refined child-loading flow
Replacing the direct child-appending approach with updateNodeInTree ensures proper merging of new children into an existing node. This structure is more flexible and maintains clarity.

Also applies to: 193-193, 195-200, 203-203

208-221: Ensure count is updated in dataObject
Since hasMoreChildren relies on node.dataObject.count, it's important that this count accurately reflects the total number of children to be loaded. Otherwise, partial data might be assumed complete.

225-226: Check for potential undefined node.children
This code assumes node.children is defined. Consider initializing children to an empty array when building nodes or adding a quick guard to avoid possible type errors.

Also applies to: 230-231

448-459: Potential parse risk for parentComponentId
If the node key’s second-to-last segment is not a valid number, Number(...) will yield NaN. It may be prudent to validate the segment or handle the parse error gracefully.

485-490: Loading children for root node
This block effectively loads children when the top-level node key exists, neatly chaining further lookups. No immediate issues noted.

Also applies to: 492-492

495-507: Highlighting only direct children
Currently, this approach searches and highlights only one level of children. If the target child is nested deeper, it may be missed. Confirm that highlighting deeper descendants is unnecessary.

511-511: Empty array fallback
Setting nodes[0]!.children = [] ensures no references to non-existent children. This is a straightforward and safe default.

514-516: Expanding the newly loaded root node
Automatically expanding the first node after loading is a convenient approach for immediate visibility. Looks good.

522-522: Loading children concurrency approach
By appending parentKey to loadingChildrenKeys, we prevent multiple concurrent loads of the same node. This is a clean way to manage concurrent tasks.

Also applies to: 524-527

542-542: Proper chaining of composite keys
Passing parentKey and meta.count into transformApiDataToTreeFormat keeps the node structure consistent with deeper composite keys. No concerns here.

Also applies to: 545-546

551-551: Cleanup from loadingChildrenKeys
Removing the parentKey from loadingChildrenKeys whether loading succeeds or fails ensures consistent state management.

Also applies to: 557-557

app/components/sbom/scan-details/index.ts

app/components/sbom/component-details/overview/index.ts

coderabbitai

Actionable comments posted: 0

🧹 Nitpick comments (11)

app/models/sbom-component.ts (2)
61-63: Handle null or undefined version values gracefully.

Currently, this.version is assumed to be a valid string. If version can ever be null or undefined, calling trim() and replace() will throw an error. Consider providing a fallback to prevent runtime issues.

You could wrap it as follows:
 get cleanVersion() {
-  return this.version.trim().replace(/(^")|("$)/g, '');
+  const v = this.version ?? '';
+  return v.trim().replace(/(^")|("$)/g, '');
 }
65-67: Duplicate cleanup logic suggests extracting a helper.

cleanLatestVersion repeats the same pattern as cleanVersion. Consider extracting the logic to a shared utility or helper function to adhere to DRY (Don't Repeat Yourself).

You could do something like:
+function removeSurroundingQuotes(str: string): string {
+  return str.trim().replace(/(^")|("$)/g, '');
+}

 get cleanLatestVersion() {
-  return this.latestVersion.trim().replace(/(^")|("$)/g, '');
+  return removeSurroundingQuotes(this.latestVersion);
 }
app/components/sbom/scan-details/skeleton-loader-tree/index.ts (1)
9-22: Consider removing unused noop and typing the component fields.

The noop() method is unused. If there's no plan to utilize it, removing it could reduce clutter.

For better maintainability, add explicit type annotations to expanded and skeletonTreeData if you want to leverage TypeScript’s benefits more fully.
 export default class SbomScanDetailsSkeletonLoaderTreeComponent extends Component<SbomScanDetailsSkeletonLoaderTreeSignature> {
-  noop() {}

-  expanded = ['placeholder-1'];
+  expanded: string[] = ['placeholder-1'];

   skeletonTreeData = Array.from(
     { length: this.args.isFilteredTree ? 3 : 12 },
     (_, index) => ({
       key: `placeholder-${index + 1}`,
       title: '',
       children: [],
     })
   );
 }
app/components/sbom/component-status/index.ts (1)
21-39: Edge case considerations for invalid or partial semver.

Currently, the logic returns false (not outdated) when versions are invalid or missing, which may hide actual outdated cases if the data is incomplete.

If pre-release versions or semver-like patterns (e.g., build metadata) are expected, consider additional checks (e.g., semver.prerelease) or semver.satisfies.

You might do:
 if (!component?.latestVersion || !component?.version) {
   return false;
 } else if (
-  !semver.valid(component.cleanVersion) ||
-  !semver.valid(component.cleanLatestVersion)
+  !semver.validRange(component.cleanVersion) ||
+  !semver.validRange(component.cleanLatestVersion)
 ) {
   return false;
 } ...
app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (1)

8-15: Consider using fluid or responsive widths.
The fixed @width='500px' may limit responsiveness on smaller screens or larger layouts. If your design permits, consider a responsive approach (e.g., percentages or breakpoints) to ensure a more flexible layout.

app/components/sbom/component-details/summary/index.ts (1)

19-32: Method name may be confusing.
The logic in isLatestVersionLess is sound. However, consider a more descriptive name like isNewerThanLatestVersion if you intend to indicate that the current version exceeds the official latest.

app/components/sbom/scan-details/skeleton-loader-list/index.ts (2)

6-25: Consider flexible or dynamic column widths.
Hardcoding specific column widths (e.g., width: 150) might hinder adaptability on smaller or larger screens. Evaluating a responsive or percentage-based width may improve layout consistency.

27-29: Clarify usage of shared object references.
Using new Array(8).fill({}) repeats the same object reference. Although acceptable for skeleton data, be aware that direct mutations on these placeholders could propagate unexpectedly if you were to alter them.

app/components/sbom/scan-details/component-tree/index.ts (3)

225-230: Avoid magic numbers for child threshold.
Using 9 as a cutoff can be confusing; consider extracting this into a named constant or configuration setting for clarity.

485-519: Consider adding error handling for child-loading failures.
While loading and highlighting logic is implemented, catching and surfacing errors (e.g., via a user notification) would improve resiliency.

525-566: Error handling silently swallows exceptions.
Currently, the logic returns an empty array on errors. Consider raising a user-facing notification or logging to inform the user.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 3f07a35 and 6e2750a.

⛔ Files ignored due to path filters (1)

package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (21)

app/components/sbom/component-details/overview/index.ts (2 hunks)
app/components/sbom/component-details/summary/index.ts (2 hunks)
app/components/sbom/component-status/index.ts (3 hunks)
app/components/sbom/empty-loading-view/index.hbs (2 hunks)
app/components/sbom/empty-loading-view/index.scss (1 hunks)
app/components/sbom/scan-details/component-tree/index.hbs (5 hunks)
app/components/sbom/scan-details/component-tree/index.ts (9 hunks)
app/components/sbom/scan-details/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader-list/index.hbs (1 hunks)
app/components/sbom/scan-details/skeleton-loader-list/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.scss (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader/index.hbs (1 hunks)
app/models/sbom-component.ts (1 hunks)
mirage/factories/sbom-component.ts (1 hunks)
package.json (1 hunks)
tests/acceptance/sbom-test.js (3 hunks)
tests/integration/components/sbom/scan-details/component-tree-test.js (1 hunks)
translations/en.json (2 hunks)
translations/ja.json (2 hunks)

🚧 Files skipped from review as they are similar to previous changes (13)

app/components/sbom/scan-details/skeleton-loader/index.hbs
app/components/sbom/empty-loading-view/index.scss
app/components/sbom/scan-details/skeleton-loader-tree/index.scss
package.json
app/components/sbom/scan-details/index.ts
app/components/sbom/scan-details/skeleton-loader-list/index.hbs
app/components/sbom/empty-loading-view/index.hbs
translations/ja.json
translations/en.json
tests/integration/components/sbom/scan-details/component-tree-test.js
app/components/sbom/component-details/overview/index.ts
mirage/factories/sbom-component.ts
app/components/sbom/scan-details/component-tree/index.hbs

⏰ Context from checks skipped due to timeout of 90000ms (3)

GitHub Check: Publish to Cloudflare Pages
GitHub Check: Setup & Build Application
GitHub Check: Cloudflare Pages

🔇 Additional comments (24)

tests/acceptance/sbom-test.js (5)

41-59: Well-structured NotificationsStub implementation.

The NotificationsStub class is well-designed for testing purposes, with proper methods to capture notifications for later assertion in tests. It follows the same pattern as other service stubs in the file.

157-157: LGTM! Service registration is properly implemented.

The NotificationsStub is correctly registered as a service, consistent with other stub services in the test setup.

471-550: Good test for parent component loading and error handling.

This test comprehensively verifies the behavior of the component tree when loading parent components from the API, including proper error handling when an invalid parent ID is provided. The test checks both the UI rendering and the error notification when things go wrong.

552-636: Well-structured hierarchical component tree test.

The test effectively verifies the multi-level tree structure functionality by:

Setting up a three-level component hierarchy

Verifying initial rendering shows only the root

Confirming level 2 components appear after expanding the root

Ensuring level 3 components display after expanding a level 2 component

The conditional response handling in the mock API is particularly well-implemented.

638-711: Excellent pagination test for component children.

This test thoroughly verifies the "View More" functionality for child components, including:

Proper batch loading with the initial 15 components

Correct rendering of the "View More" button when more items are available

Loading of additional items when the button is clicked

Accurate count verification at each step

The pagination implementation with offset and limit parameters is well-tested.
app/components/sbom/component-status/index.ts (2)

58-58: Keep consistency in naming across your codebase.

You introduced isOutdated in place of a removed isOutdated getter on the model level. Ensure any usage referencing the old property is updated. In some references, the variable or method might remain component.isOutdated. Confirm everything is consistent to avoid confusion.

5-5:
✅ Verification successful

Ensure semver dependency is declared.

Confirm that semver is listed in your dependencies (not just devDependencies) if it's used in production code paths. Otherwise, this may cause deployment or runtime issues.

🏁 Script executed:
#!/bin/bash
# Description: Verify semver is in the correct dependency list in package.json
rg '"semver"' package.json -A5
Length of output: 226
Semver dependency is correctly declared

After verifying the package.json, the grep output confirms that semver with version "^7.7.1" is present in the dependencies section. No further action is required since the production code import in app/components/sbom/component-status/index.ts correctly maps to this dependency.
app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (2)

4-4: Looks good – flexible width is appropriate.
No major issues here. The @width='full' attribute aligns well with a responsive layout.

17-28: Tree structure integration is fine.
The new <AkTree> usage with this.skeletonTreeData, @expanded, and noop handlers appears correct for a skeleton loader scenario.

app/components/sbom/component-details/summary/index.ts (4)

6-6: Import usage is valid.
Importing the entire semver library is common and acceptable.

12-12: Confirm non-null usage of sbomComponent.
Changing from nullable to non-null might be a breaking change for callers. Ensure that all calling sites now provide a valid sbomComponent.

48-48: Usage of cleanVersion is appropriate.
This clarifies version strings and avoids potential parsing issues.

52-54: Verify intended fallback behavior.
Hiding the "latestVersion" field when isLatestVersionLess is true may be correct, but confirm that setting it to null meets the desired UI expectations.

app/components/sbom/scan-details/skeleton-loader-list/index.ts (2)

1-1: Service import is good.
Importing service from @ember/service is standard and correct here.

4-4: Intl import looks fine.
Bringing in IntlService ensures straightforward i18n usage within the component.

app/components/sbom/scan-details/component-tree/index.ts (9)

109-109: Preserve clarity in margin logic.
The simplified condition (removing hasMoreComponents) seems valid; just ensure it aligns with intended UI behavior for first-level nodes without siblings.

163-168: Conditionally show "View More" for dependencies only.
This added guard effectively checks if the node exists, is marked as a dependency, and has a parent before proceeding, which is logically sound.

185-185: Verify consistency with partial loading.
Relying on isLastLoadedChild && this.hasMoreChildren(...) is cleaner than checking global flags. Ensure that parent-child relationships remain accurate even if data is loaded in segments.

189-205: Streamlined approach by passing the entire node.
Switching from passing a node key to an AkTreeNodeProps object is more intuitive and reduces redundant lookups, making the code more maintainable.

208-223: Check for potential partial-load edge cases.
hasMoreChildren compares the parent's current child count to node.dataObject.count. Verify that these values remain in sync when loading children incrementally.

357-388: Validate hasNextSibling with paginated loading.
Setting hasNextSibling based on index < components.length - 1 may underestimate siblings if not all data has been fetched. Confirm that sibling logic is accurate in partial-load scenarios.

410-410: Using the newly expanded key is appropriate.
The code ensures the correct node is expanded for additional loading. No further issues found.

448-460: Extracting immediate parent ID from node key.
The approach of using the second-to-last segment in the key is sound for this chain-based scheme. Good job handling multi-level nesting logically.

588-590: Reference to total count for incremental loads.
This usage of meta.count is consistent with other methods; see previous partial-load comments to ensure the logic stays aligned with actual fetch pagination.

sonarqubecloud · 2025-03-06T06:12:30Z

Quality Gate passed

Issues
2 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.8% Duplication on New Code

See analysis details on SonarQube Cloud

coderabbitai

Actionable comments posted: 0

🧹 Nitpick comments (3)

translations/ja.json (2)

608-608: Assess Language Consistency for Tooltip Text

The new translation key "highlightedNodeTooltip" is added with the English text:
"This is the component from the tree that you are currently viewing"

While several entries in this file are localized in Japanese, some remain in English. Please verify whether this entry should be translated for Japanese users or intentionally left in English.

1321-1321: Validate the Parent Component Not Found Message

The new key "parentComponentNotFound" is introduced with the value:
"Parent component not found"

Confirm that this message meets your localization guidelines for the Japanese audience—if consistency is desired, consider providing a Japanese translation.
app/components/sbom/component-details/summary/index.ts (1)
52-54: Consider adding an explanatory comment for version handling logic.

The conditional prevents displaying a latest version when it's less than the current version (an unusual edge case). Consider adding a comment explaining this decision to help future developers understand the logic.
  {
    label: this.intl.t('sbomModule.latestVersion'),
+   // Don't show latest version if it's less than the current version (potential data inconsistency)
    value: this.isLatestVersionLess
      ? null
      : this.args.sbomComponent?.cleanLatestVersion,
  },

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 6e2750a and 5722ba2.

⛔ Files ignored due to path filters (1)

package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (21)

app/components/sbom/component-details/overview/index.ts (2 hunks)
app/components/sbom/component-details/summary/index.ts (2 hunks)
app/components/sbom/component-status/index.ts (3 hunks)
app/components/sbom/empty-loading-view/index.hbs (2 hunks)
app/components/sbom/empty-loading-view/index.scss (1 hunks)
app/components/sbom/scan-details/component-tree/index.hbs (5 hunks)
app/components/sbom/scan-details/component-tree/index.ts (9 hunks)
app/components/sbom/scan-details/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader-list/index.hbs (1 hunks)
app/components/sbom/scan-details/skeleton-loader-list/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.scss (1 hunks)
app/components/sbom/scan-details/skeleton-loader-tree/index.ts (1 hunks)
app/components/sbom/scan-details/skeleton-loader/index.hbs (1 hunks)
app/models/sbom-component.ts (1 hunks)
mirage/factories/sbom-component.ts (1 hunks)
package.json (1 hunks)
tests/acceptance/sbom-test.js (3 hunks)
tests/integration/components/sbom/scan-details/component-tree-test.js (1 hunks)
translations/en.json (2 hunks)
translations/ja.json (2 hunks)

🚧 Files skipped from review as they are similar to previous changes (16)

app/components/sbom/scan-details/skeleton-loader-list/index.hbs
app/components/sbom/scan-details/index.ts
app/components/sbom/scan-details/skeleton-loader/index.hbs
app/components/sbom/empty-loading-view/index.hbs
mirage/factories/sbom-component.ts
app/components/sbom/empty-loading-view/index.scss
app/components/sbom/scan-details/skeleton-loader-tree/index.scss
app/components/sbom/component-details/overview/index.ts
package.json
tests/integration/components/sbom/scan-details/component-tree-test.js
app/models/sbom-component.ts
app/components/sbom/component-status/index.ts
app/components/sbom/scan-details/skeleton-loader-list/index.ts
app/components/sbom/scan-details/component-tree/index.hbs
translations/en.json
app/components/sbom/scan-details/component-tree/index.ts

⏰ Context from checks skipped due to timeout of 90000ms (3)

GitHub Check: Publish to Cloudflare Pages
GitHub Check: Setup & Build Application
GitHub Check: Cloudflare Pages

🔇 Additional comments (16)

app/components/sbom/scan-details/skeleton-loader-tree/index.ts (3)

9-12: Good addition of the noop handler.

The noop() method works well as an empty callback for the tree component's required event handlers.

12-13: Expanded state initialization looks good.

The default expanded state is properly initialized with a placeholder key that corresponds to the first item in your skeleton data.

14-21: Well-structured skeleton data generation.

The dynamic skeleton data generation based on the filter state is a good approach. Using Array.from with a factory function is an elegant solution to create placeholder items.

app/components/sbom/scan-details/skeleton-loader-tree/index.hbs (3)

1-7: Good stack configuration update.

Changing from padding/spacing to full width improves the layout structure for the skeleton loader.

8-15: Clean implementation of the package name container.

The nested stack with proper alignment and styling for the package name skeleton provides a consistent representation of the loading state.

17-28: Excellent tree skeleton implementation.

The use of AkTree with the skeleton data creates a more accurate representation of the loading state that matches the actual component tree structure. The tree connectors and consistent heights provide a seamless transition between loading and loaded states.

This implementation addresses the PR objective of implementing a proper skeleton loader for the tree view.

tests/acceptance/sbom-test.js (5)

41-59: Well-structured NotificationsStub implementation.

The NotificationsStub class provides a clean implementation for testing notification interactions, which is essential for verifying error messages mentioned in the PR objectives. It correctly implements storage and setting of error, success, and info messages.

157-157: LGTM: Service registration for notifications.

Correctly registers the NotificationsStub as a service to enable testing of notification behavior throughout the test suite.

471-550: Great new test case for parent component loading and error handling.

This test effectively verifies the parent component API loading and error handling, which directly addresses the PR objective of "adding an error message for incorrect parent URLs on the overview page." The test appropriately:

Sets up test data with realistic PURL format

Verifies proper component tree rendering

Tests error handling for incorrect parent IDs

Confirms appropriate redirection behavior

552-636: Thorough test for multi-level component hierarchy.

This test properly validates the functionality of third-level children in the component tree, which is one of the key enhancements mentioned in the PR objectives. The test effectively:

Creates a complete three-level hierarchy of components

Verifies expansion of multiple levels

Confirms correct count of nodes at each level

638-711: Comprehensive test for "View More" functionality.

This test directly addresses the PR objective of "fixing the 'view more' option for children displaying incorrect dependency counts." The implementation:

Correctly simulates pagination with initial and additional batches

Verifies the component counts before and after loading more

Tests the UI interaction for loading additional dependencies

The test structure is clear and the assertions properly validate the expected behavior.
app/components/sbom/component-details/summary/index.ts (5)

6-6: Good addition of semver for version comparisons.

Adding the semver library is appropriate for properly handling semantic versioning comparisons, which is critical for accurately determining version relationships.

48-48: Good use of cleanVersion property.

Using the cleanVersion property improves display consistency and better handles potential version formatting issues.

12-12:
✅ Verification successful

Verify non-null assumption for sbomComponent.

The type has been changed from allowing null to requiring a non-null SbomComponentModel. While this improves type safety, ensure that all call sites provide a valid sbomComponent to avoid runtime errors.

🏁 Script executed:
#!/bin/bash
# Search for places where this component is used to verify the non-null assumption
rg -A 3 -B 3 "ComponentDetails::Summary" --glob "*.hbs"
Length of output: 628
Non-Null Assumption Confirmed

The search output from overview/index.hbs shows that the Sbom::ComponentDetails::Summary component is consistently invoked with a non-null @sbomComponent (i.e. @sbomComponent={{@sbomComponent}}). This confirms that the change from a nullable to a non-null type is valid, as all call sites appear to provide a proper value.

19-32:
❓ Verification inconclusive

Verify semver version handling for non-standard version strings.

The semver.valid() check will reject non-standard version formats. Ensure this will not cause problems with any existing data containing non-standard version strings, or add additional handling for such cases.

Also applies to: 52-54

🏁 Script executed:
#!/bin/bash
# Look for examples of version formats in the system to verify compatibility with semver
rg "cleanVersion|cleanLatestVersion" --glob "*.ts" -A 2 -B 2
Length of output: 2585
SemVer Comparison: Confirm Handling for Non-Standard Versions

The current implementation uses semver.valid() in both the summary and component-status components to filter out non-standard version strings. Please verify that this approach is acceptable for all existing data. If legacy or non-strict semver versions are present in your dataset, consider adding additional fallback or conversion logic.

Locations to review:

app/components/sbom/component-details/summary/index.ts (Lines 19–32 and 52–54)

app/components/sbom/component-status/index.ts

Version cleaning in app/models/sbom-component.ts

19-32:
❓ Verification inconclusive

Type inconsistency in isLatestVersionLess implementation.

The implementation uses optional chaining (?.) when accessing sbomComponent properties, suggesting it might be undefined. However, the type definition on line 12 indicates sbomComponent is required and non-nullable.

This creates a disconnect between the type definition and implementation. Either:

The optional chaining is unnecessary if sbomComponent is guaranteed to exist

The type definition should allow for null/undefined values

🏁 Script executed:
#!/bin/bash
# Check if there are places in the codebase where this component is used with a null/undefined sbomComponent
rg -A 5 -B 5 "sbom/component-details/summary" --glob "*.hbs"
Length of output: 60
Action Required: Align Optional Chaining with sbomComponent's Type

The getter currently uses optional chaining on sbomComponent (i.e. this.args.sbomComponent?.cleanLatestVersion and similar), which implies it might be undefined. However, the type definition on line 12 suggests that sbomComponent is required and non-nullable. To maintain consistency, please either:

Remove the Optional Chaining: If sbomComponent is always provided (as the limited search in associated Handlebars templates seems to suggest), remove the ?. operators.

Update the Type Definition: If there exists a scenario where sbomComponent can indeed be null/undefined, adjust the type accordingly to reflect that possibility.

Please manually verify that there are no cases (especially outside of the HBS files) where sbomComponent might be missing to confirm the appropriate approach.

github-actions bot deployed to irenestorybook (Preview) March 3, 2025 08:47 View deployment

avzz-19 force-pushed the PD-1702-sbom-dependency-tree-enhancements branch from f723015 to 609e536 Compare March 4, 2025 16:47

github-actions bot deployed to irenestorybook (Preview) March 4, 2025 16:50 View deployment

avzz-19 force-pushed the PD-1702-sbom-dependency-tree-enhancements branch from 609e536 to 47be6f4 Compare March 5, 2025 09:23

github-actions bot deployed to irenestorybook (Preview) March 5, 2025 09:26 View deployment

avzz-19 force-pushed the PD-1702-sbom-dependency-tree-enhancements branch from 47be6f4 to 3f07a35 Compare March 6, 2025 04:22

avzz-19 marked this pull request as ready for review March 6, 2025 04:23

github-actions bot deployed to irenestorybook (Preview) March 6, 2025 04:27 View deployment

coderabbitai bot reviewed Mar 6, 2025

View reviewed changes

app/components/sbom/scan-details/index.ts Show resolved Hide resolved

app/components/sbom/component-details/overview/index.ts Show resolved Hide resolved

avzz-19 force-pushed the PD-1702-sbom-dependency-tree-enhancements branch from 3f07a35 to 6e2750a Compare March 6, 2025 04:37

github-actions bot deployed to irenestorybook (Preview) March 6, 2025 04:40 View deployment

coderabbitai bot reviewed Mar 6, 2025

View reviewed changes

sbom dependency tree enhancements

5722ba2

avzz-19 force-pushed the PD-1702-sbom-dependency-tree-enhancements branch from 6e2750a to 5722ba2 Compare March 6, 2025 06:11

coderabbitai bot reviewed Mar 6, 2025

View reviewed changes

github-actions bot deployed to irenestorybook (Preview) March 6, 2025 06:16 View deployment

avzz-19 requested a review from future-pirate-king March 6, 2025 06:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

sbom dependency tree enhancements #1539

sbom dependency tree enhancements #1539

avzz-19 commented Mar 3, 2025 •

edited

Loading

coderabbitai bot commented Mar 3, 2025 •

edited

Loading

Chat

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

CodeRabbit Configuration File (`.coderabbit.yaml`)

Documentation and Community

cloudflare-workers-and-pages bot commented Mar 3, 2025 •

edited

Loading

cypress bot commented Mar 3, 2025 •

edited

Loading

coderabbitai bot left a comment

coderabbitai bot left a comment

sonarqubecloud bot commented Mar 6, 2025

coderabbitai bot left a comment

sbom dependency tree enhancements #1539

Are you sure you want to change the base?

sbom dependency tree enhancements #1539

Conversation

avzz-19 commented Mar 3, 2025 • edited Loading

coderabbitai bot commented Mar 3, 2025 • edited Loading

Walkthrough

Changes

Suggested reviewers

Poem

Chat

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

CodeRabbit Configuration File (.coderabbit.yaml)

Documentation and Community

cloudflare-workers-and-pages bot commented Mar 3, 2025 • edited Loading

Deploying irenestaging with Cloudflare Pages

cypress bot commented Mar 3, 2025 • edited Loading

Irene Run #617

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

sonarqubecloud bot commented Mar 6, 2025

Quality Gate passed

coderabbitai bot left a comment

Choose a reason for hiding this comment

avzz-19 commented Mar 3, 2025 •

edited

Loading

coderabbitai bot commented Mar 3, 2025 •

edited

Loading

CodeRabbit Configuration File (`.coderabbit.yaml`)

cloudflare-workers-and-pages bot commented Mar 3, 2025 •

edited

Loading

cypress bot commented Mar 3, 2025 •

edited

Loading