Skip to content

Standalone User Experience Overview (AST-112336) #1301

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 66 commits into
base: main
Choose a base branch
from
Open

Standalone User Experience Overview (AST-112336) #1301

wants to merge 66 commits into from
+5,038 −560

Conversation

@cx-rahul-pidde
Copy link
Contributor

@cx-rahul-pidde cx-rahul-pidde commented Nov 11, 2025
edited
Loading

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

User experience varies based on authentication and licensing: logged-out users have limited access with only SCA/KICS scans available, while One Assist, AI Protection, or Developer Assist licenses progressively unlock Results View actions, Assist features, and realtime scanning capabilities. Users without any assist-related license retain basic scanning but lose Assist functionality and SAST realtime scanning, with Ignore Vulnerability visibility adjusted accordingly.

References

JIRA link - https://checkmarx.atlassian.net/browse/AST-112336

Testing

User Logged Out – Expected Behavior Across Features

1. Checkmarx One – Results View
	Disabled Components
	- Run Scan button
	- Severity filters
	- Other filters
	- Group By options
	Enabled Components
	- Settings button
	- Open Settings (on click)
	Documentation Links
	- Read our docs → Redirect to:
	https://docs.checkmarx.com/en/34965-123549-installing-and-setting-up-the-checkmarx-vs-code-extension.html

2. Checkmarx One Assist
	Disabled
	- View Ignored Vulnerability
	Enabled
	- Settings
	Documentation link
	- Read our docs → Redirect to:
		Both the Documentation link and Read our docs redirect to:
		https://docs.checkmarx.com/en/34965-405960-checkmarx-one-developer-assist.html

3. Checkmarx SCA Realtime Scanner View
	Enabled
	- Run SCA Realtime Scanner
	- Clear SCA results tree
	- Bottom Checkmarx SCA icon
	Special Rule
	- User does NOT need to be logged in to run SCA Realtime Scan.

4. Checkmarx ASPM Results View
- Authentication is required to display this view.

5. Checkmarx Realtime Scanner (SAST)
- Should NOT run when the user is logged out.

6. Checkmarx KICS Realtime Scanner
- Authentication not required
- User can run KICS realtime scans.
- Bottom Checkmarx Kics icon visible

7. Ignore Vulnerability Icon
- Should be hidden when user is logged out.

User has Checkmarx Developer Assist Licencse

1. Checkmarx One – Results View
	Hidden
	- Run Scan button
	- Severity filters
	- Other filters
	- Group By options
	Enabled Components
	- Settings button
	- Promotional Card View
	Documentation Links
	- On Click of learn more → Redirect to:	https://docs.checkmarx.com/en/34965-68743-using-the-checkmarx-vs-code-extension---checkmarx-one-results.html#UUID-f6ae9b23-44c8-fcf3-bef2-7b136b9001a1

2. Checkmarx One Assist
	hidden
	- View Ignored Vulnerability link hidden if ignored count is zero		
	Enabled
	- Settings
	- View Ignored Vulnerability (Kebab menu)
	Documentation link
	- Documentation → Redirect to:
		https://docs.checkmarx.com/en/34965-405960-checkmarx-one-developer-assist.html

3. Checkmarx SCA Realtime Scanner View
	Enable 
	- Promotional Card view
	Documentation Links
	- On Click of learn more → Redirect to:	https://docs.checkmarx.com/en/34965-152266-using-the-vs-code-checkmarx-extension---sca-realtime-scanning.html#UUID-1d224150-6409-1d67-6d30-14de69d40ab9
	Hidden
	- Run SCA Realtime Scanner
	- Clear SCA results tree
	- Bottom Checkmarx SCA icon
	Special Rule
	- Cannt run SCA realtime scan

4. Checkmarx ASPM Results View
Enable 
	- Promotional Card view
Documentation Links
	- On Click of learn more → Redirect to:	https://docs.checkmarx.com/en/34965-68743-using-the-checkmarx-vs-code-extension---checkmarx-one-results.html#UUID-f6ae9b23-44c8-fcf3-bef2-7b136b9001a1_section-idm234938984608896
Hidden
- Cannt see the ASPM results.

5. Checkmarx Realtime Scanner (SAST)
- we can run scan and see the results in problem window 

6. Checkmarx KICS Realtime Scanner
- Bottom Checkmarx Kics icon hidden
- Cannt run KICS realtime scan

7. Ignore Vulnerability Icon
- Should be visible at bottom.

User has Checkmarx One assist || Checkmarx AI Protection license

1. Checkmarx One – Results View
	Enabled
	- Run Scan button(based on project selection)
	- Severity filters
	- Other filters
	- Group By options
	- Settings button

2. Checkmarx One Assist
	hidden
	- View Ignored Vulnerability link hidden if ignored count is zero		
	Enabled
	- Settings
	- View Ignored Vulnerability (Kebab menu)
	Documentation link
	- Documentation → Redirect to:
		https://docs.checkmarx.com/en/34965-405960-checkmarx-one-developer-assist.html

3. Checkmarx SCA Realtime Scanner View
	Enabled
	- Run SCA Realtime Scanner
	- Clear SCA results tree
	- Bottom Checkmarx SCA icon
	Special Rule
	- User does NOT need to be logged in to run SCA Realtime Scan.

4. Checkmarx ASPM Results View
- ASPM results display based on existing condition

5. Checkmarx Realtime Scanner (SAST)
- we can run scan and see the results in problem window 

6. Checkmarx KICS Realtime Scanner
- Authentication not required
- User can run KICS realtime scans.
- Bottom Checkmarx Kics icon visible

7. Ignore Vulnerability Icon
- Should be visible at bottom.

User dont have Checkmarx One Assist || AI Protection || Checkmarx Developer Assist license

1. Checkmarx One – Results View
	Enabled
	- Run Scan button(based on project selection)
	- Severity filters
	- Other filters
	- Group By options
	- Settings button
2. Checkmarx One Assist
	Disabled\hidden
	- View Ignored Vulnerability in kebab menu it is disabled	
	Enabled
	- Contact to Administration view will be display
	- Settings
	- View Ignored Vulnerability (Kebab menu)
	Documentation link
	- Documentation → Redirect to:
		https://docs.checkmarx.com/en/34965-405960-checkmarx-one-developer-assist.html
3. Checkmarx SCA Realtime Scanner View
	Enabled
	- Run SCA Realtime Scanner
	- Clear SCA results tree
	- Bottom Checkmarx SCA icon visible
	Special Rule
	- User does NOT need to be logged in to run SCA Realtime Scan.
4. Checkmarx ASPM Results View
- Based on latest scan the ASPM results will display 
5. Checkmarx Realtime Scanner 
- Should NOT run when the cxone assist license is disabled
6. Checkmarx KICS Realtime Scanner
- Authentication not required
- User can run KICS realtime scans.
- Bottom Checkmarx Kics icon visible
7. Ignore Vulnerability Icon
- Should be hidden when user the cxone assist license is disabled

Checklist

  • I have added documentation for new/changed functionality in this PR (if applicable).
  • All active GitHub checks for tests, formatting, and security are passing
  • The correct base branch is being used

@github-actions
Copy link
Contributor

github-actions bot commented Nov 11, 2025
edited
Loading

Logo
Checkmarx One – Scan Summary & Detailsbb3e01b6-f701-4168-8e71-f53ed2ea5879

Great job! No new security vulnerabilities introduced in this pull request

@cx-rahul-pidde cx-rahul-pidde changed the title In Developement phase (AST-112336) In Developement phase standalone(AST-112336) Nov 12, 2025
@cx-rahul-pidde cx-rahul-pidde force-pushed the feature/AST-112336 branch 2 times, most recently from 86031aa to 345b763 Compare November 18, 2025 13:53
@cx-rahul-pidde
fixed custom state issue
0f253c4
@cx-rahul-pidde
Merge branch 'main' of https://github.com/Checkmarx/ast-vscode-extension
7517ba4
@cx-rahul-pidde
created new webviewpanel with name Checkmarx One Assist
d17a712
@cx-rahul-pidde
CxOne Assist Standalone Changes
eb91674
@cx-rahul-pidde
Added onclick event to view ignored vulnerabilities
6912397 
Added onclick event to view ignored vulnerabilities
@cx-rahul-pidde
After login show or hide UI screen
31e4659
@cx-rahul-pidde
Refactored newly added code
99dc1cc
@cx-rahul-pidde
fixed lint issue
95dad11
@cx-rahul-pidde
Added provomotionalView
493d2c5
@cx-rahul-pidde
displayed promotioncardview based on licence condition
776757d
@cx-rahul-pidde
Added kebab menu and handled click events
61c7edb
@cx-rahul-pidde
code changes
09ce9a3
@cx-rahul-pidde
updated tooltip and fixed ignore vulnerability issue
27adf58
@cx-rahul-pidde
modified some conditions
29f52d6
@cx-rahul-pidde
hide view ignore vuln if standalone license is disabled
0a45e64
@cx-rahul-pidde
added duplicate view if standalone is disabled
7357a8a
@cx-rahul-pidde
Used constants instead of hardcoded commands
3165fe7
@cx-rahul-pidde
refactred extension code
d0746db
@cx-rahul-pidde
if standalone is disabled hide some icons available at vscode bottom
47a6e7f
@cx-rahul-pidde
if standalone is enabled then hide checkmarx scan
bc68add
@cx-rahul-pidde
if standalone is enabled then hide some icons
2318c6b
@cx-rahul-pidde
removed space changes
e7bf436
@cx-rahul-pidde
removed space changes
114344e
@cx-rahul-pidde
if standalone enabled skip kics remediation and scan
e6c9f1f
@cx-rahul-pidde
if standalone enabled skip kics remediation and scan
e59969e
@cx-rahul-pidde cx-rahul-pidde changed the title In Developement phase standalone(AST-112336) Standalone User Experience Overview (AST-112336) Dec 2, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cx-umesh-waghode cx-umesh-waghode Awaiting requested review from cx-umesh-waghode

@cx-anurag-dalke cx-anurag-dalke Awaiting requested review from cx-anurag-dalke

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

feature

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cx-rahul-pidde