feat : vuln summary command

[Sypher845]

Note : This is the first PR for the issue #723

Description

The PR adds the new harbor vuln summary command. A new command that displays an overview of vulnerability data from Harbor's Security Hub.

• Severity distribution bar chart (Critical, High, Medium, Low, None, Unknown)
• Total artifact and scan counts with not-scanned breakdown
• Optional --with-dangerous-artifact flag to show top 5 most vulnerable artifacts
• Optional --with-dangerous-cve flag to show top 5 most dangerous CVEs

Type of Change

Please select the relevant type.

• Bug fix
• New feature
• Refactor
• Documentation update
• Chore / maintenance

[codecov]

Codecov Report

❌ Patch coverage is 2.04082% with 144 lines in your changes missing coverage. Please review.
✅ Project coverage is 7.40%. Comparing base (60ad0bd) to head (fea5a6e).
⚠️ Report is 111 commits behind head on main.

Files with missing lines	Patch %	Lines
pkg/views/vulnerability/summary/view.go	0.00%	93 Missing ⚠️
cmd/harbor/root/vulnerability/summary.go	0.00%	29 Missing ⚠️
cmd/harbor/root/vulnerability/cmd.go	0.00%	11 Missing ⚠️
pkg/api/vulnerability_handler.go	0.00%	11 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff            @@
##             main    #738      +/-   ##
=========================================
- Coverage   10.99%   7.40%   -3.59%     
=========================================
  Files         173     265      +92     
  Lines        8671   13168    +4497     
=========================================
+ Hits          953     975      +22     
- Misses       7612   12084    +4472     
- Partials      106     109       +3     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[NucleoFusion]

Do not use ANSI styling like this. Instead rely on lipgloss.
have a look at the slog PR

[Sypher845]

Waiting for #739 to get merged

[bupd]

its merged - @Sypher845 - please update

Thanks

[NucleoFusion]

Can we have either aliases or like short-forms of this?
I feel like writing --with-dangerous-cve and/or the artifact is just too big and tedious.
Something like
--cve & --art or something for shortforms?
Or anything you can suggest

[Sypher845]

--cve and --artifact, is this good?

[NucleoFusion]

yeah, that would be good

[NucleoFusion]

I think we should replace the empty character. Although in mine it shows something like this

And in most modern terminal emulator's they do the same. But for VMs or other cases they look how they do in the PR Description

strings.Repeat("█", filled) + strings.Repeat("─", empty)
// ████████████────────

I think this is better. Cause the actual block is standard unicode and so is the -
The half-filled block looks crude to me (this may as well be a personal opinion)
@bupd @qcserestipy What do you think?

[Sypher845]

i feel the dot one looks good

[NucleoFusion]

I feel the line one lol
But you can keep the dot, it isnt bad
@qcserestipy @bupd what are your thoughs?

[bupd]

yeah the line looks good - feels more modern - and across the cli we use lines - so should be good to go..

[bupd]

2 for 1 - I believe line is the way to go.

[NucleoFusion]

Can we also add a %age?
Like showing

[XXXXX-----] 43% (4444 CVEs)

Do you think this would be better?

[Sypher845]

Yeah , adding it would be better as the UI is also having it.

[bupd]

@Sypher845 please resolve conflicts