Content:
Summary:
Is a listing of all built artifacts sorted with newest on top.
The built artifacts table displays all builds the current team has permission to see. If the user performs a search (filter), the table displays the results from the search.
+Upload button: to manually upload an SBOM (Software Bill-of-Materials) in the CycloneDX format.
Heading | Description |
---|---|
Name | The name (label) of the build, and a link to the Built artifact show page. |
Track | The name of the component:track that was built, and a link to the Track show page. |
Version | The version of the component that was built. |
Build time | The time the build finished. |
Delivered | Displays whether the build has a delivery report. |
Tags | The tags on the build. |
Status | Build status (and Test status if present) as symbols. |
Compare | Select button for a comparison. |
Filter by | Description |
---|---|
Search | Search the Name of an artifact. |
component | Select component to narrow the search. |
track | Select track to narrow the search. Track can only be selected after component selection. |
state | Select state of the build to narrow the search. |
deliveries | Select whether a the artifact has delivery reports to narrow the search. |
tags | Select one or more tags to narrow the search. |
start date | Select a start date to narrow the search. |
end date | Select a end date to narrow the search. |
Compare two Builds (of the same type) by pushing the compare select buttons in the built artifacts table.
A new windows is opened on top, specifying the builds to be compared. When two builds are selected: push the compare button to open a new Artifact Diff page, showing the differences.
The Built artifacts show page contains information and references related to one specific build. If the build is of the Collection component type, information from related components is also aggregated into this page.
The page has the following main areas:
Color coded status boxes:
Box | Description |
---|---|
Build status | Build activity Success or Failed. |
Test status | Ok or Failed with the numbers of Failed tests / Total number of tests. |
Since last delivery | Time since the Delivery report was created. |
Licenses not decided on | Number of licenses to evaluate and decide action/Total number of licenses. |
Vulnerabilities not decided on | Number of vulnerabilities to evaluate and decide action/Total number vulnerabilities. |
Colors:
Name | Description |
---|---|
Comparison | Comparing data in this Build with data in an earlier Build and presentation of the differences. |
Deliveries | Create a delivery report for this build, a listing of existing reports, and a listing of deliverable artifacts. |
Tests | A list of all tests runs performed on this Build. |
Composition | The composition of the artifact i.e. all artifacts/versions included in this |
Vulnerabilities | A list of vulnerabilities detected in this build. |
External artifacts | A list of artifacts included in/related to this build. |
Licenses | A list of licenses included in/related to this build. |
History | A list of manual changes of data in the WebApp related to this build. |
Comparing data in this Build with data in an earlier Build and presentation of the differences.
Sections in the page:
Previous build buttons to select one of three standard types of Builds to compare with:
Dependency buttons to select the amount of dependencies to visualize.:
Advanced diff button to open a new page to compare this build with any other build, Artifact diff.
The Issues section shows changes in Issues and their status in comparison to the selected previous build.
Header | Description |
---|---|
Identity | Status icon and identity of the Issue and a link to the Issue show page for more information. |
Kind | Kind of Issue. |
Slogan | Slogan describing the Issue. |
Components | Component(s) affected by this Issue, and link(s) to comprehensive component data. |
The Changes in code section shows what components and code have changed in comparison to the selected previous build.
Header | Description |
---|---|
Component | Component icon and identity of the component and a link to the component pages for more information. |
Track | Branch that have been built. |
Code revisions | Version changes, from -> to. |
Changes | Changes icon and a number specifying how many changes, including a link that opens an inline table with detailed information. |
The inline table specifying all changes:
Header | Description |
---|---|
Created | Date & time when commit data was created in MAIA. |
Comment | The commit comment, including a link to open the show page for the commit. |
User | The user, and a link to user show page. |
Issue status on commit | Issue identity and status of Issue. If it's the latest commit with reference to this Issue (per component:track) the status can change to Done. Also a link to the Issue show page. |
Header | Description |
---|---|
Component | Icon and identity of the component, and a link to component pages in MAIA. External components are described in the package url format. About package url (external link). |
From | Version before this build. Link to 1) a component build report with this version, or 2) a external component show page. |
To | Version after this build, and links. |
Changes | Tags describing the changes. Rebuilt (grey): no changes in source code, rebuilt with the same code. Source Code (green): Built with a source code change. Version (blue): Built with version change. Component removed (orange): Built and the component is not included anymore. Component added (orange): Built with this new component included. |
Same as the previous section for components that are used in compile time.
Necessary permissions to create a delivery report: Create/Update delivery reports and Update issues.
When a software build has a delivery report generated by the web app, it's regarded as Delivered by MAIA.
Sections in the tab:
When pushing the Create report button a pop-up window is opened, as a reminder to synchronize all Issues before creating the report. Only Issues considered Done will be included in the report.
Other warnings may also appear, for instance:
Continue to open a form for report editing.
The table lists all reports created for this build. Heading:
Open the report page by clicking the label. The page has three sections:
Table containing all versions of the delivery report. Heading:
Edit and update the report by pushing the edit button.
A modified report form is opened with two new sections.
The full delivery report:
Contains a list of deliverables including links to each deliverable.
The tab is a variant of the standard test executions index page but filtered to only show test executions made on this build.
To learn about the test execution pages see Test executions.
The Composition tab contains a list of commits and artifacts that constitutes the composition.
The commit table shows the latest commit in the current composition.
The table headings are:
The table lists child commits.
The table lists child artifacts:
The table contains the child compositions.
The Vulnerabilities tab contains an index page listing all vulnerabilities detected for this build. The information is continuously updated through the Information Services.
Sections in the page:
Filter by | Description |
---|---|
Search | Search the Name of an artifact or CVE-id. |
Backend | Filter by backend data provider: NVD or OSV. |
Decided | Filter on: have a decision/no decision |
Action | Filter on decided action: Must be fixed/Has been fixed/Will not be fixed |
Due date | Filter on due dates: 1Month/2 Months/3 Months |
Shows the number of Vulnerabilities for each Priority.
A listing of all vulnerabilities identified in this build.
Header | Description |
---|---|
Identifier | Vulnerability identity, CVE-id or other, and a link to the local vulnerability show page containing detailed information and analysis tools. |
Priority | Priority set by a manual decision or by an automated rule. |
Added date | Date when the vulnerability was added to the WebApp. |
Decision | The result of a decision. |
Due date | The due date (if any) |
Artifact | Name of the artifact and link to the detailed artifact info , in package url format. About package url (external link). |
Artifact status | Health status for the artifact. |
Lists all external artifacts included in this build.
Filter by | Description |
---|---|
Search | Search artifact name(s). |
Type | Filter by type of artifact e.g. generic, gem, npm, etc. |
License approval | Filter on has approved, disapproved, etc. |
License | Filter on has license/has no license |
Vulnerabilities | Filter to show vulnerable artifacts within priority categories. |
Usage | Filter on usage Deliverable/Compile time/Real time/Test. |
Status tags | Filter on a set of status tags. |
Header | Description |
---|---|
Name | Name and version of the artifact and link to detailed artifact info, in package url format. About package url (external link). |
Status | Artifact status described with a set of tags (see below). |
Vulnerabilities | A colored text indicating the highest priority on an existing vulnerability detected for the artifact. Link to open an inline table with a list of vulnerabilities. |
Licenses | Licenses identified for the artifact. Light blue icon= approved, Grey=to be analyzed, Red=not approved |
Used in | Deliverable/Compile time/Real time/Test |
By artifact | Used by artifact. |
Header | Description |
---|---|
Identifier | Vulnerability identity, CVE-id or other, and a link to the local vulnerability show page containing detailed information and analysis tools. |
Priority | Priority set by a manual decision or by an automated rule. |
Added date | Date when the vulnerability was added to the WebApp. |
Decision | The result of a decision. |
Due date | The due date (if any) |
The Licenses tab contains a list of all artifacts sorted on license type.
One table for each license type
Header | Description |
---|---|
Artifact | Name of the artifact and link to the detailed artifact info , in package url format. About package url (external link). |
Approval | Approval status: Approved/Disapproved/undecided with icons. |
Source | License source: SBOM/Link/Manual ... from an SBOM/downloaded through a link/manually created |
Present in | Deliverable / Compile time |
The History tab is a list of changes performed in the MAIA web app UI.