foreman_rh_cloud 12.1.1 → 12.1.3

data/config/routes.rb

@@ -37,6 +37,7 @@ Rails.application.routes.draw do
       get 'inventory_upload', to: '/react#index'
     end
     get 'insights_cloud', to: '/react#index' # Uses foreman's react controller
+    get 'insights_vulnerability', to: '/react#index'
   end
 
   scope :module => :'insights_cloud/api', :path => :redhat_access do

data/db/seeds.d/200_features.rb

@@ -0,0 +1,4 @@
+ForemanRhCloud.on_prem_smart_proxy_features.each do |feature_name|
+  f = Feature.where(:name => feature_name).first_or_create
+  raise "Unable to create proxy feature: #{SeedHelper.format_errors f}" if f.nil? || f.errors.any?
+end

data/lib/foreman_inventory_upload/generators/tags.rb

@@ -41,7 +41,10 @@ module ForemanInventoryUpload
       end
 
       def organizations
-        [['organization', @host.organization.name]]
+        [
+          ['organization', @host.organization.name],
+          ['organization_label', @host.organization.label],
+        ]
       end
 
       def content_data

data/lib/foreman_rh_cloud/engine.rb

@@ -44,12 +44,12 @@ module ForemanRhCloud
               setting('allow_auto_inventory_upload', type: :boolean, description: N_('Enable automatic upload of your host inventory to the Red Hat cloud'), default: true, full_name: N_('Automatic inventory upload'))
               setting('allow_auto_insights_sync', type: :boolean, description: N_('Enable automatic synchronization of Insights recommendations from the Red Hat cloud'), default: true, full_name: N_('Synchronize recommendations Automatically'))
               setting('allow_auto_insights_mismatch_delete', type: :boolean, description: N_('Enable automatic deletion of mismatched host records from the Red Hat cloud'), default: false, full_name: N_('Automatic mismatch deletion'))
-              setting('obfuscate_inventory_hostnames', type: :boolean, description: N_('Obfuscate host names sent to the Red Hat cloud. (If insights_minimal_data_collection is set to true, this setting is ignored and host names are always obfuscated.)'), default: false, full_name: N_('Obfuscate host names'))
-              setting('obfuscate_inventory_ips', type: :boolean, description: N_('Obfuscate ipv4 addresses sent to the Red Hat cloud.  (If insights_minimal_data_collection is set to true, this setting is ignored and host ipv4 addresses are always obfuscated.)'), default: false, full_name: N_('Obfuscate host ipv4 addresses.'))
+              setting('obfuscate_inventory_hostnames', type: :boolean, description: N_('Obfuscate host names sent to the Red Hat cloud. (If insights_minimal_data_collection is set to true, this setting is ignored because host names are not included in the report.)'), default: false, full_name: N_('Obfuscate host names'))
+              setting('obfuscate_inventory_ips', type: :boolean, description: N_('Obfuscate ipv4 addresses sent to the Red Hat cloud.  (If insights_minimal_data_collection is set to true, this setting is ignored because host IPv4 addresses are not included in the report.)'), default: false, full_name: N_('Obfuscate host ipv4 addresses.'))
               setting('exclude_installed_packages', type: :boolean, description: N_('Exclude installed packages from being uploaded to the Red Hat cloud. (If insights_minimal_data_collection is set to true, this setting is ignored and installed packages are always excluded.)'), default: false, full_name: N_("Exclude installed packages"))
               setting('include_parameter_tags', type: :boolean, description: N_('Should import include parameter tags from Foreman?'), default: false, full_name: N_('Include parameters in insights-client reports'))
               setting('rhc_instance_id', type: :string, description: N_('RHC daemon id'), default: nil, full_name: N_('ID of the RHC(Yggdrasil) daemon'))
-              setting('insights_minimal_data_collection', type: :boolean, default: false, full_name: N_('Minimal data collection'), description: N_('Only send the minimum required data to Red Hat cloud, and obfuscate wherever possible. When this is true, hostnames and IPv4 addresses are always obfuscated and installed packages are excluded, regardless of those settings.'))
+              setting('insights_minimal_data_collection', type: :boolean, default: false, full_name: N_('Minimal data collection'), description: N_('Only include the minimum required data in inventory reports for uploading to Red Hat cloud. When this is true, installed packages are excluded from the report regardless of the exclude_installed_packages setting, and host names and IPv4 addresses are excluded from the report regardless of obfuscation settings.'))
             end
           end
 
@@ -117,11 +117,18 @@ module ForemanRhCloud
               parent: :insights_menu,
               if: -> { !ForemanRhCloud.with_local_advisor_engine? }
             menu :top_menu, :insights_hits, caption: N_('Recommendations'), url: '/foreman_rh_cloud/insights_cloud', url_hash: { controller: :react, action: :index }, parent: :insights_menu
+            menu :top_menu,
+              :insights_vulnerability,
+              caption: N_('Vulnerability'),
+              url: '/foreman_rh_cloud/insights_vulnerability',
+              url_hash: { controller: :react, action: :index },
+              parent: :insights_menu,
+              if: -> { ForemanRhCloud.with_local_advisor_engine? }
           end
 
           register_facet InsightsFacet, :insights do
             configure_host do
-              api_view :list => 'api/v2/hosts/insights/insights'
+              api_view :list => 'api/v2/hosts/insights/insights', :single => 'api/v2/hosts/insights/single'
               set_dependent_action :destroy
             end
           end
@@ -203,6 +210,30 @@ module ForemanRhCloud
       )
     end
 
+    # Ideally this code belongs to an initializer. The problem is that Katello controllers are not initialized completely until after the end of the to_prepare blocks
+    # This means I can patch the controller only in the after_initialize block that is promised to run after the to_prepare
+    # initializer 'foreman_rh_cloud.allow_smart_proxy_actions', :before => :finisher_hook, :after => 'katello.register_plugin'  do |_app|
+    # end
+    config.after_initialize do
+      # skip overrides in migrations, since the controller initialization depends on tables existense
+      if defined?(Katello) && !Foreman.in_setup_db_rake?
+        Katello::Api::V2::OrganizationsController.include Foreman::Controller::SmartProxyAuth
+        # patch the callbacks order for :download_debug_certificate, since local_find_taxonomy has to run after the user is already initialized
+        Katello::Api::V2::OrganizationsController.skip_before_action(:local_find_taxonomy, only: :download_debug_certificate)
+        Katello::Api::V2::OrganizationsController.add_smart_proxy_filters(
+          [:index, :download_debug_certificate],
+          features: ForemanRhCloud.on_prem_smart_proxy_features
+        )
+        Katello::Api::V2::OrganizationsController.before_action(:local_find_taxonomy, only: :download_debug_certificate)
+
+        Katello::Api::V2::RepositoriesController.include Foreman::Controller::SmartProxyAuth
+        Katello::Api::V2::RepositoriesController.add_smart_proxy_filters(
+          :index,
+          features: ForemanRhCloud.on_prem_smart_proxy_features
+        )
+      end
+    end
+
     rake_tasks do
       Rake::Task['db:seed'].enhance do
         ForemanRhCloud::Engine.load_seed
@@ -224,4 +255,8 @@ module ForemanRhCloud
       ::SETTINGS[:ssl_ca_file]
     end
   end
+
+  def self.on_prem_smart_proxy_features
+    ['Insights']
+  end
 end

data/lib/foreman_rh_cloud/version.rb

@@ -1,3 +1,3 @@
 module ForemanRhCloud
-  VERSION = '12.1.1'.freeze
+  VERSION = '12.1.3'.freeze
 end

data/lib/insights_vulnerability.rb

@@ -0,0 +1,2 @@
+module InsightsVulnerability
+end

data/lib/tasks/hybrid_cloud.rake

@@ -1,64 +1,132 @@
 require 'io/console'
+require 'uri'
 
-namespace :rh_cloud do |args|
-  desc 'Register Satellite Organization with Hybrid Cloud API. \
-        Specify org_id=x replace your organization ID with x. \
-        Specify SATELLITE_RH_CLOUD_URL=https://x with the Hybrid Cloud endpoint you are connecting to.'
+def logger
+  @logger ||= Logger.new(STDOUT)
+end
+
+namespace :rh_cloud do
+  desc 'Register Satellite Organization with Hybrid Cloud API.'
+  # This task registers the Satellite Organization with the Hybrid Cloud API.
+  # It requires the user to input their organization ID, Insights URL, and token.
+  # The task will then send a POST request to the Hybrid Cloud API to register the organization.
+  # The response will be logged, and any errors will be caught and logged as well.
+  # The task will exit with an error message if the organization does not have a manifest imported or if the token is not entered.
+  # The task will also log a warning if the custom URL is not set and the default one is used.
   task hybridcloud_register: [:environment] do
     include ::ForemanRhCloud::CertAuth
     include ::InsightsCloud::CandlepinCache
 
-    def logger
-      @logger ||= Logger.new(STDOUT)
+    def default_registrations_url
+      URI.join(ForemanRhCloud.base_url, '/api/identity/certificate/registrations').to_s
     end
 
-    def registrations_url
-      logger.warn("Custom url is not set, using the default one: #{ForemanRhCloud.base_url}") if ENV['SATELLITE_RH_CLOUD_URL'].empty?
-      ForemanRhCloud.base_url + '/api/identity/certificate/registrations'
+    # Helper method to get the registrations URL, with a warning for default usage
+    def registrations_url(custom_url)
+      if custom_url.empty?
+        logger.warn("Custom url is not set, using the default one: #{default_registrations_url}")
+        default_registrations_url
+      else
+        if URI(custom_url).scheme.nil?
+          logger.warn("Custom URL lacks a scheme; prepending https:// prefix.")
+          custom_url = "https://" + custom_url
+        end
+        custom_url
+      end
     end
 
-    if ENV['org_id'].nil?
-      logger.error('ERROR: org_id needs to be specified.')
-      exit(1)
+    def get_organization(user_org_id)
+      maybe_organization = Organization.find_by(id: user_org_id)
+      if maybe_organization.nil?
+        logger.error("Organization with ID '#{user_org_id}' not found.")
+        exit(1)
+      end
+      maybe_organization
     end
 
-    @organization = Organization.find_by(id: ENV['org_id'].to_i) # saw this coming in as a string, so making sure it gets passed as an integer.
-    @uid = cp_owner_id(@organization)
-    @hostname = ForemanRhCloud.foreman_host_name
-    logger.error('Organization provided does not have a manifest imported.') + exit(1) if @uid.nil?
-
-    puts 'Paste your token, output will be hidden.'
-    @token = STDIN.noecho(&:gets).chomp
-    logger.error('Token was not entered.') + exit(1) if @token.empty?
-
-    def headers
-      {
-        Authorization: "Bearer #{@token}",
-      }
+    def get_uid(organization)
+      maybe_uid = cp_owner_id(organization)
+      if maybe_uid.nil?
+        logger.error("Organization '#{organization}' does not have a manifest imported.")
+        exit(1)
+      end
+      maybe_uid
     end
 
-    def payload
-      {
-        "uid": @uid,
-        "display_name": "#{@hostname}+#{@organization.label}",
-      }
+    # --- Input Collection ---
+    puts "Paste in your organization ID, this can be retrieved with the command: hammer organization list"
+    loop do
+      input = STDIN.gets.chomp
+      if input.match?(/^\d+$/) # Checks if input consists only of digits
+        @user_org_id = input.to_i
+        break
+      else
+        puts "Invalid input. Please enter a numeric organization ID."
+      end
     end
 
-    def method
-      :post
+    puts "\n" + "-" * 50 + "\n\n"
+    puts "Paste in your custom Insights URL. If nothing is entered, the default will be used (#{default_registrations_url})."
+    insights_user_input = STDIN.gets.chomp
+
+    puts "\n" + "-" * 50 + "\n\n"
+    puts 'Paste in your Hybrid Cloud API token, output will be hidden.'
+    puts 'This token can be retrieved from the Hybrid Cloud console.'
+    token = STDIN.noecho(&:gets).chomp
+    if token.empty?
+      logger.error('Token was not entered.')
+      exit(1)
     end
 
+    # --- Data Preparation ---
+
+    organization = get_organization(@user_org_id)
+    uid = get_uid(organization)
+    hostname = ForemanRhCloud.foreman_host_name
+    insights_url = registrations_url(insights_user_input)
+
+    # --- API Request ---
+
+    headers = {
+      Authorization: "Bearer #{token}",
+    }
+
+    payload = {
+      'uid': uid,
+      "display_name": "#{hostname}+#{organization.label}",
+    }
+
     begin
       response = execute_cloud_request(
-        organization: @organization,
-        method: method,
-        url: registrations_url,
+        organization: organization,
+        method: :post,
+        url: insights_url,
         headers: headers,
         payload: payload.to_json
       )
-      logger.debug(response)
+      logger.debug("Cloud request completed: status=#{response.code}, body_preview=#{response.body&.slice(0, 200)}")
+    rescue RestClient::Unauthorized => _ex
+      # Add a more specific rescue for 401 Unauthorized errors
+      logger.error('Registration failed: Your token is invalid or unauthorized. Please check your token and try again.')
+      # Optionally, you can still log the full debug info if helpful for advanced troubleshooting
+      # logger.debug(ex.backtrace.join("\n"))
+      exit(1)
+    rescue RestClient::ExceptionWithResponse => ex
+      # This catches any RestClient exception that has a response (like 400, 403, 404, 500, etc.)
+      status_code = begin
+        ex.response.code
+      rescue StandardError
+        "unknown"
+      end
+      logger.error("Registration failed with HTTP status #{status_code}: #{ex.message}")
+      logger.debug("Response body (if available): #{ex.response.body}")
+      exit(1)
     rescue StandardError => ex
-      logger.error(ex)
+      # This is the catch-all for any other unexpected errors
+      logger.error("An unexpected error occurred during registration: #{ex.message}")
+      exit(1)
     end
+
+    logger.info("Satellite Organization '#{organization.label}' (ID: #{@user_org_id}) successfully registered.")
   end
 end

data/package.json

@@ -1,6 +1,6 @@
 {
   "name": "foreman_rh_cloud",
-  "version": "12.1.1",
+  "version": "12.1.3",
   "description": "Inventory Upload =============",
   "main": "index.js",
   "scripts": {

data/test/controllers/insights_cloud/api/cloud_request_controller_test.rb

@@ -51,8 +51,7 @@ module InsightsCloud::Api
       mock_composer = mock('composer')
       ::JobInvocationComposer.expects(:for_feature).with do |feature, host_ids, params|
         feature == :rh_cloud_connector_run_playbook &&
-        host_ids.first == host1.id &&
-        host_ids.last == host2.id
+        host_ids.sort == [host1.id, host2.id].sort
       end.returns(mock_composer)
       mock_composer.expects(:trigger!)
       mock_composer.expects(:job_invocation)

data/test/unit/rh_cloud_http_proxy_test.rb

@@ -4,6 +4,7 @@ class RhCloudHttpProxyTest < ActiveSupport::TestCase
   setup do
     @global_content_proxy_mock = 'http://global:content@localhost:80'
     @global_foreman_proxy_mock = 'http://global:foreman@localhost:80'
+    ForemanRhCloud.stubs(:with_local_advisor_engine?).returns(false)
   end
 
   test 'selects global content proxy' do
@@ -18,6 +19,13 @@ class RhCloudHttpProxyTest < ActiveSupport::TestCase
     assert_equal @global_foreman_proxy_mock, ForemanRhCloud.proxy_setting
   end
 
+  test 'returns empty string in on-prem setup' do
+    ForemanRhCloud.unstub(:with_local_advisor_engine?)
+    ForemanRhCloud.stubs(:with_local_advisor_engine?).returns(true)
+
+    assert_empty ForemanRhCloud.proxy_setting
+  end
+
   def setup_global_content_proxy
     http_proxy = FactoryBot.create(:http_proxy, url: @global_content_proxy_mock)
     HttpProxy.stubs(:default_global_content_proxy).returns(http_proxy)

data/test/unit/tags_generator_test.rb

@@ -61,6 +61,7 @@ class TagsGeneratorTest < ActiveSupport::TestCase
     assert_equal @host.content_views.pluck(:name).max, actual['content_view'].map(&:second).max
     assert_equal Foreman.instance_id, actual['satellite_instance_id'].first.last
     assert_equal @host.organization_id.to_s, actual['organization_id'].first.last
+    assert_equal @host.organization.label, actual['organization_label'].first.last
   end
 
   test 'filters tags with empty values' do

data/webpack/CVEsHostDetailsTab/CVEsHostDetailsTab.js

@@ -0,0 +1,17 @@
+import React from 'react';
+import PropTypes from 'prop-types';
+import { translate as __ } from 'foremanReact/common/I18n';
+
+const CVEsHostDetailsTab = ({ hostName }) => (
+  <div>
+    <h1>
+      {__('CVEs tab for host:')} {hostName}
+    </h1>
+  </div>
+);
+
+CVEsHostDetailsTab.propTypes = {
+  hostName: PropTypes.string.isRequired,
+};
+
+export default CVEsHostDetailsTab;

data/webpack/CVEsHostDetailsTab/__tests__/CVEsHostDetailsTab.test.js

@@ -0,0 +1,18 @@
+import React from 'react';
+import { render, screen } from '@testing-library/react';
+import CVEsHostDetailsTab from '../CVEsHostDetailsTab';
+
+describe('CVEsHostDetailsTab', () => {
+  it('renders without crashing', () => {
+    render(<CVEsHostDetailsTab hostName="test-host.example.com" />);
+    expect(
+      screen.getByText('CVEs tab for host: test-host.example.com')
+    ).toBeTruthy();
+  });
+
+  it('renders the host name', () => {
+    const hostName = 'test-host.example.com';
+    render(<CVEsHostDetailsTab hostName={hostName} />);
+    expect(screen.getByText(`CVEs tab for host: ${hostName}`)).toBeTruthy();
+  });
+});

data/webpack/CVEsHostDetailsTab/index.js

@@ -0,0 +1,3 @@
+import CVEsHostDetailsTab from './CVEsHostDetailsTab';
+
+export default CVEsHostDetailsTab;

data/webpack/ForemanInventoryUpload/Components/InventorySettings/MinimalInventoryDropdown.js

@@ -25,7 +25,7 @@ const MinimalInventoryDropdown = ({ setChosenValue }) => {
       ),
     },
     optional: {
-      title: __('Optional data collection'),
+      title: __('Analytics data collection'),
       description: __(
         'Send additional data to enhance Insights services, as per the settings'
       ),

data/webpack/ForemanRhCloudFills.js

@@ -3,7 +3,8 @@ import { addGlobalFill } from 'foremanReact/components/common/Fill/GlobalFill';
 import InventoryAutoUploadSwitcher from './ForemanInventoryUpload/SubscriptionsPageExtension/InventoryAutoUpload';
 import NewHostDetailsTab from './InsightsHostDetailsTab/NewHostDetailsTab';
 import { InsightsTotalRiskChartWrapper } from './InsightsHostDetailsTab/InsightsTotalRiskChartWrapper';
-import { isNotRhelHost } from './ForemanRhCloudHelpers';
+import { isNotRhelHost, vulnerabilityDisabled } from './ForemanRhCloudHelpers';
+import CVEsHostDetailsTab from './CVEsHostDetailsTab/CVEsHostDetailsTab';
 
 const fills = [
   {
@@ -27,6 +28,15 @@ const fills = [
     component: props => <InsightsTotalRiskChartWrapper {...props} />,
     weight: 2800,
   },
+  {
+    slot: 'host-details-page-tabs',
+    name: 'CVEs',
+    component: props => <CVEsHostDetailsTab {...props} />,
+    weight: 300,
+    metadata: {
+      hideTab: vulnerabilityDisabled,
+    },
+  },
 ];
 
 export const registerFills = () => {

data/webpack/ForemanRhCloudHelpers.js

@@ -11,3 +11,6 @@ export const isNotRhelHost = ({ hostDetails }) =>
     // eslint-disable-next-line camelcase
     hostDetails?.operatingsystem_name
   );
+
+export const vulnerabilityDisabled = ({ hostDetails }) =>
+  isNotRhelHost({ hostDetails }) || !hostDetails?.vulnerability?.enabled;

data/webpack/ForemanRhCloudPages.js

@@ -2,6 +2,7 @@ import React from 'react';
 import componentRegistry from 'foremanReact/components/componentRegistry';
 import { registerRoutes as foremanRegisterRoutes } from 'foremanReact/routes/RoutingService';
 import ForemanInventoryUpload from './ForemanInventoryUpload';
+import InsightsVulnerability from './InsightsVulnerability/InsightsVulnerability';
 import InsightsCloudSync from './InsightsCloudSync';
 import InsightsHostDetailsTab from './InsightsHostDetailsTab';
 
@@ -9,6 +10,7 @@ const pages = [
   { name: 'ForemanInventoryUpload', type: ForemanInventoryUpload },
   { name: 'InsightsCloudSync', type: InsightsCloudSync },
   { name: 'InsightsHostDetailsTab', type: InsightsHostDetailsTab },
+  { name: 'InsightsVulnerability', type: InsightsVulnerability },
 ];
 
 export const registerPages = () => {
@@ -26,6 +28,11 @@ export const routes = [
     exact: true,
     render: props => <ForemanInventoryUpload {...props} />,
   },
+  {
+    path: '/foreman_rh_cloud/insights_vulnerability',
+    exact: true,
+    render: props => <InsightsVulnerability {...props} />,
+  },
 ];
 
 export const registerRoutes = () => {

data/webpack/InsightsCloudSync/Components/InsightsTable/InsightsLabel.js

@@ -0,0 +1,40 @@
+import React from 'react';
+import {
+  AngleDoubleDownIcon,
+  AngleDoubleUpIcon,
+  CriticalRiskIcon,
+  EqualsIcon,
+} from '@patternfly/react-icons';
+import { Label } from '@patternfly/react-core';
+import PropTypes from 'prop-types';
+
+const VALUE_TO_STATE = {
+  1: { icon: <AngleDoubleDownIcon />, text: 'Low', color: 'blue' },
+  2: { icon: <EqualsIcon />, text: 'Moderate', color: 'yellow' },
+  3: { icon: <AngleDoubleUpIcon />, text: 'Important', color: 'orange' },
+  4: { icon: <CriticalRiskIcon />, text: 'Critical', color: 'red' },
+};
+
+const InsightsLabel = ({ value = 1, text, hideIcon, ...props }) => (
+  <Label
+    {...props}
+    color={VALUE_TO_STATE[value].color}
+    icon={!hideIcon && VALUE_TO_STATE[value].icon}
+  >
+    {text || VALUE_TO_STATE[value].text}
+  </Label>
+);
+
+InsightsLabel.propTypes = {
+  value: PropTypes.oneOf([1, 2, 3, 4]),
+  text: PropTypes.string,
+  hideIcon: PropTypes.bool,
+};
+
+InsightsLabel.defaultProps = {
+  value: 1,
+  text: '',
+  hideIcon: false,
+};
+
+export default InsightsLabel;

data/webpack/InsightsCloudSync/Components/InsightsTable/InsightsSection.js

@@ -0,0 +1,30 @@
+import React from 'react';
+import PropTypes from 'prop-types';
+
+import './InsightsSection.scss';
+
+const InsightsSection = ({ type, children, className, ...props }) => {
+  let sectionClasses = className || '';
+  if (type !== undefined) {
+    sectionClasses = `${sectionClasses} ins-l-${type}`.trim();
+  }
+
+  return (
+    <section {...props} className={sectionClasses}>
+      {children}
+    </section>
+  );
+};
+
+InsightsSection.propTypes = {
+  type: PropTypes.string,
+  children: PropTypes.node,
+  className: PropTypes.string,
+};
+InsightsSection.defaultProps = {
+  type: undefined,
+  children: null,
+  className: '',
+};
+
+export default InsightsSection;

data/webpack/InsightsCloudSync/Components/InsightsTable/InsightsSection.scss

@@ -0,0 +1,25 @@
+section.ins-l-content {
+  padding: var(--pf-t--global--spacer--lg);
+}
+
+section.ins-l-button-group {
+  > * { display: inline; }
+  * + * { margin-left: 0.3125rem; } // 5px = 0.3125rem
+  margin: 1.5rem 0; // 24px = 1.5rem
+}
+
+section.ins-l-icon-group {
+  * + * { margin-left: 0.625rem; } // 10px = 0.625rem
+}
+
+section.ins-l-icon-group__with-major {
+  * + * { margin-left: 0.46875rem; } // 7.5px = 0.46875rem
+  .ins-battery:last-of-type {
+    padding-left: 0.9375rem; // 15px = 0.9375rem
+    border-left: 2px solid #eaeaea;
+    span.label{
+      font-weight: 500;
+      margin: 0 0.625rem; // 10px = 0.625rem
+    }
+  }
+}

data/webpack/InsightsCloudSync/Components/InsightsTable/InsightsTableConstants.js

@@ -1,21 +1,19 @@
 /* eslint-disable camelcase */
 import React from 'react';
-import {
-  InsightsLabel,
-  Section,
-} from '@redhat-cloud-services/frontend-components';
 import { DropdownItem } from '@patternfly/react-core/deprecated';
 import { sortable, cellWidth } from '@patternfly/react-table';
 import { AnsibeTowerIcon, ExternalLinkAltIcon } from '@patternfly/react-icons';
 import { translate as __ } from 'foremanReact/common/I18n';
 import { foremanUrl } from '../../../ForemanRhCloudHelpers';
 import DropdownToggle from '../../../common/DropdownToggle';
+import InsightsSection from './InsightsSection';
+import InsightsLabel from './InsightsLabel';
 
 export const totalRiskFormatter = ({ title: totalRisk }) => ({
   children: (
-    <Section className="insights-total-risk" type="icon-group">
+    <InsightsSection className="insights-total-risk" type="icon-group">
       <InsightsLabel value={totalRisk} />
-    </Section>
+    </InsightsSection>
   ),
 });
 

data/webpack/InsightsVulnerability/InsightsVulnerability.js

@@ -0,0 +1,13 @@
+import React from 'react';
+import PageLayout from 'foremanReact/routes/common/PageLayout/PageLayout';
+import { translate as __ } from 'foremanReact/common/I18n';
+
+const InsightsVulnerability = () => (
+  <PageLayout searchable={false} header={__('Vulnerability')}>
+    <div className="insights-vulnerability">
+      <p>This page is under development. Please check back soon for updates.</p>
+    </div>
+  </PageLayout>
+);
+
+export default InsightsVulnerability;

data/webpack/InsightsVulnerability/InsightsVulnerability.test.js

@@ -0,0 +1,18 @@
+import React from 'react';
+import { render, screen } from '@testing-library/react';
+import '@testing-library/jest-dom';
+import InsightsVulnerability from './InsightsVulnerability';
+
+describe('InsightsVulnerability component', () => {
+  it('renders the "under development" message', () => {
+    render(<InsightsVulnerability />);
+    expect(
+      screen.getByText(/this page is under development/i)
+    ).toBeInTheDocument();
+  });
+
+  it('renders the container with correct class', () => {
+    const { container } = render(<InsightsVulnerability />);
+    expect(container.querySelector('.insights-vulnerability')).toBeTruthy();
+  });
+});

data/webpack/__tests__/ForemanRhCloudHelpers.test.js

@@ -1,10 +1,39 @@
 import { testSelectorsSnapshotWithFixtures } from '@theforeman/test';
-import { foremanUrl } from '../ForemanRhCloudHelpers';
+import { foremanUrl, vulnerabilityDisabled } from '../ForemanRhCloudHelpers';
 
 global.URL_PREFIX = 'MY_TEST_URL_PREFIX.example.com';
 
 const fixtures = {
   'should return foreman Url': () => foremanUrl('/test_path'),
+  'vulnerabilityDisabled returns false for RHEL host with vulnerability enabled': () =>
+    vulnerabilityDisabled({
+      hostDetails: {
+        operatingsystem_name: 'Red Hat Enterprise Linux',
+        vulnerability: { enabled: true },
+      },
+    }),
+  'vulnerabilityDisabled returns true for non-RHEL host': () =>
+    vulnerabilityDisabled({
+      hostDetails: {
+        operatingsystem_name: 'Ubuntu',
+        vulnerability: { enabled: true },
+      },
+    }),
+  'vulnerabilityDisabled returns true for RHEL host with vulnerability disabled': () =>
+    vulnerabilityDisabled({
+      hostDetails: {
+        operatingsystem_name: 'Red Hat Enterprise Linux',
+        vulnerability: { enabled: false },
+      },
+    }),
+  'vulnerabilityDisabled returns true for missing vulnerability object': () =>
+    vulnerabilityDisabled({
+      hostDetails: {
+        operatingsystem_name: 'Red Hat Enterprise Linux',
+      },
+    }),
+  'vulnerabilityDisabled returns true for missing hostDetails': () =>
+    vulnerabilityDisabled({}),
 };
 
 describe('ForemanRhCloud helpers', () =>