harness - The Modern Software Delivery Platform®
Create
Log in
Home
Feedback
Feature Requests
Log in to your harness - The Modern Software Delivery Platform® account to give feedback
Log In
Boards
Feature Requests
Powered by Canny
Feature Requests
Anonymous
Feature Requests for Harness. Select 'Category' based on the module you are requesting the feature for.
Description
Category
Continuous Delivery & GitOps
Continuous Integration
Feature Flags
Cloud Cost Management
Service Reliability Management
Security Testing Orchestration
Chaos Engineering
Software Engineering Insights
General Platform Requests
Internal Developer Portal
Code Repository
IACM
Continuous Error Tracking
Drone 2.x
Open Source
SSCA
Uncategorized
Showing
Trending
Sort
Trending
Top
New
Filter
Under Review
Planned
In Progress
This Fiscal Quarter
Next Fiscal Quarter
Long-term
Pending Feedback
Complete
posts in
All Categories
All Categories
Continuous Delivery & GitOps (1,253)
Continuous Integration (260)
Feature Flags (67)
Cloud Cost Management (148)
Service Reliability Management (5)
Security Testing Orchestration (57)
Chaos Engineering (24)
Software Engineering Insights (63)
General Platform Requests (311)
Internal Developer Portal (39)
Code Repository (25)
IACM (9)
Continuous Error Tracking (9)
Drone 2.x (10)
Open Source (28)
SSCA (2)
Centralized View and Notifications of the Exemptions Raised
In harness STO platform, we need a centralized view of exemptions raised across all the projects. Also, whenever there is an exemption raised, there should be an notification shown/sent.
1
·
in progress
1
Jira Integration within STO/External Tickets
Currently, Jira creation from the pipeline is proxied through the delegate, while Jira creation from STO initiates directly from the server. In cases where this involves a protected Jira instance (e.g., passing through a firewall to an on-prem Jira), the STO call won’t be allowed unless firewall settings are adjusted.
1
·
in progress
2
Sonarqube Scanner Auto detect target with Git branch special characters
The SonarQube Scanner Plugin currently does not support special characters in branch names for automatic target detection. This limitation is causing our pipeline to fail.
2
·
in progress
1
Is there going to be a library for CxOne?
We migrated our organization from CxSAST/CxSCA to CxOne. In the meantime, I'm using the Github Action, thanks.
2
·
in progress
2
Support Exemption Type by Target or HCR Repo
We would love to have the ability to excempt vulnerabilities by Target or HCR Code Repository.
6
·
in progress
3
STO Dashboard issue getting populated
Hi Team, I'm trying to build a STO dashboard. I'm trying to add a feature where the list of pipelines which has issues and which do not have issues are also added. Right now, I'm only able to see pipelines list which has issues. I'm not able to see pipelines does not have issues. https://app.harness.io/ng/account/H6rHO8vtQYKelD_wgjnMpA/dashboards/folder/shared/view/26443 Can you please help me with that. Regards, Janish
5
·
in progress
1
Checkmarx only evaluates on Category of Security Issues NOT by the Occurrence of Security Issues
The Checkmarx step only display and evaluate how many types of vulnerabilities identified by Checkmarx. When I scan the project for the 1st time, I got 27 occurrences of SQL Injection: Java High Risk. Pipeline is failed because SQL injection is a new type of vulnerabilities for this pipeline. https://app.harness.io/ng/account/vGS8Qq_fSJik8VyI4rwqHQ/ci/orgs/Corporate/projects/bus0011_INFOSEC/pipelines/Jeremy/executions/BlzR5TNlSMCm5c__pcPyTA/security?storeType=INLINE&pageSizeOccurrences=20&pageOccurrences=0&issue=M5GDsq9z9UIt1UeDtJnudr The second time I run it, I got 28 occurrences of SQL Injection: Java High Risk. Pipeline is success because SQL Injection is an existing type of vulnerabilities. https://app.harness.io/ng/account/vGS8Qq_fSJik8VyI4rwqHQ/ci/orgs/Corporate/projects/bus0011_INFOSEC/pipelines/Jeremy/executions/xYSS-ozVRXSpJfPAQrf3sw/security?storeType=INLINE&pageSizeOccurrences=20&pageOccurrences=0&issue=M5GDsq9z9UIt1UeDtJnudr In case, the product team is introducing another new occurrence of SQL injection. Harness policy is not able to catch this new vulnerability as SQL injection type already exist.
8
·
in progress
1
Powered by Canny
