Secret Detection Revelation Policy UI

Module

Web

Status

VERIFIED

Description

Configuration UI for controlling how detected secrets are displayed (masked vs revealed). Includes a revelation policy selector with permission-gated full reveal, a masked value display component with copy-to-clipboard, rule category selection, and alert channel testing capabilities.

Implementation Details

Feature directory: src/Web/StellaOps.Web/src/app/features/secret-detection/
Routes: secret-detection.routes.ts
Components:
- alert-destination-config (src/Web/StellaOps.Web/src/app/features/secret-detection/alert-destination-config.component.ts)
- channel-test (src/Web/StellaOps.Web/src/app/features/secret-detection/channel-test.component.ts)
- alert-destination-config (src/Web/StellaOps.Web/src/app/features/secret-detection/components/alerts/alert-destination-config.component.ts)
- exception-manager (src/Web/StellaOps.Web/src/app/features/secret-detection/components/exceptions/exception-manager.component.ts)
- masked-value-display (src/Web/StellaOps.Web/src/app/features/secret-detection/components/findings/masked-value-display.component.ts)
- secret-findings-list (src/Web/StellaOps.Web/src/app/features/secret-detection/components/findings/secret-findings-list.component.ts)
- revelation-policy-selector (src/Web/StellaOps.Web/src/app/features/secret-detection/components/settings/revelation-policy-selector.component.ts)
- rule-category-toggles (src/Web/StellaOps.Web/src/app/features/secret-detection/components/settings/rule-category-toggles.component.ts)
- secret-detection-settings (src/Web/StellaOps.Web/src/app/features/secret-detection/components/settings/secret-detection-settings.component.ts)
- exception-form (src/Web/StellaOps.Web/src/app/features/secret-detection/exception-form.component.ts)
- exception-manager (src/Web/StellaOps.Web/src/app/features/secret-detection/exception-manager.component.ts)
- finding-detail-drawer (src/Web/StellaOps.Web/src/app/features/secret-detection/finding-detail-drawer.component.ts)
- masked-value-display (src/Web/StellaOps.Web/src/app/features/secret-detection/masked-value-display.component.ts)
- revelation-policy-config (src/Web/StellaOps.Web/src/app/features/secret-detection/revelation-policy-config.component.ts)
- rule-category-selector (src/Web/StellaOps.Web/src/app/features/secret-detection/rule-category-selector.component.ts)
- ... and 2 more components
Services:
- secret-detection-settings (src/Web/StellaOps.Web/src/app/features/secret-detection/services/secret-detection-settings.service.ts)
- secret-exception (src/Web/StellaOps.Web/src/app/features/secret-detection/services/secret-exception.service.ts)
- secret-findings (src/Web/StellaOps.Web/src/app/features/secret-detection/services/secret-findings.service.ts)
Behavior tests:
- src/Web/StellaOps.Web/src/tests/security/secret-detection-revelation-policy-ui.behavior.spec.ts
Models:
- src/Web/StellaOps.Web/src/app/features/secret-detection/models/alert-destination.models.ts
- src/Web/StellaOps.Web/src/app/features/secret-detection/models/revelation-policy.models.ts
- src/Web/StellaOps.Web/src/app/features/secret-detection/models/secret-detection.models.ts
- src/Web/StellaOps.Web/src/app/features/secret-detection/models/secret-finding.models.ts
Source: Feature matrix scan

E2E Test Plan

Setup:
- Log in with a user that has appropriate permissions
- Navigate to /security
- Ensure test data exists (scanned artifacts, SBOM data, or seed data as needed)
Core verification:
- Verify the component renders correctly with sample data
- Verify interactive elements respond to user input
- Verify data is fetched and displayed from the correct API endpoints
Edge cases:
- Verify graceful handling when backend API is unavailable (error state)
- Verify responsive layout at different viewport sizes
- Verify accessibility (keyboard navigation, screen reader labels, ARIA attributes)

Verification

Run: docs/qa/feature-checks/runs/web/secret-detection-revelation-policy-ui/run-001/
Date (UTC): 2026-02-11

4.2 KiB Raw Blame History