feat: Migrate Trivy.robot(Security Hub Testcase) to playwright ( With CI fix ) #22791

adityachopra29 · 2026-01-31T10:23:40Z

Thank you for contributing to Harbor!

Comprehensive Summary of your change

Add Harbor CA certificates to system's trusted certificates
Adds the missing WEBHOOK_ENDPOINT_UI endpoint needed for running Webhook e2e tests in the CI

Issue being fixed

Fixes the CI issue coming in PR #22591

Please indicate you've done the following:

Well Written Title and Summary of the PR
Label the PR as needed. "release-note/ignore-for-release, release-note/new-feature, release-note/update, release-note/enhancement, release-note/community, release-note/breaking-change, release-note/docs, release-note/infra, release-note/deprecation"
Accepted the DCO. Commits without the DCO will delay acceptance.
Made sure tests are passing and test coverage is added if needed.
Considered the docs impact and opened a new docs issue or PR with docs changes if needed in website repository.

Signed-off-by: bupd <bupdprasanth@gmail.com>

Signed-off-by: bupd <bupdprasanth@gmail.com> fix: playwright github action Signed-off-by: bupd <bupdprasanth@gmail.com> fix: playwright github action Signed-off-by: bupd <bupdprasanth@gmail.com> fix: rename login logout test Signed-off-by: bupd <bupdprasanth@gmail.com> fix: playwright testing Signed-off-by: bupd <bupdprasanth@gmail.com> feat: correct test Signed-off-by: bupd <bupdprasanth@gmail.com>

Signed-off-by: bupd <bupdprasanth@gmail.com>

Signed-off-by: Aditya Chopra <adityachopra2912@gmail.com>

adityachopra29 · 2026-01-31T10:31:07Z

To the maintainers: @bupd @OrlinVasilev @MinerYang @stonezdj @Vad1mo

During the community meeting, we discussed the failing CI for PR #22591, which is needed to validate the PoC for the Playwright migration. I identified the two issues causing the CI failures and have fixed them.

To verify the changes, I’ll need to run the CI. If you could approve the CI run, that would be great. Please let me know if anything else is missing or needs improvement.

codecov · 2026-02-04T13:15:00Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 46.63%. Comparing base (c8c11b4) to head (70f4b0d).
⚠️ Report is 666 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #22791      +/-   ##
==========================================
+ Coverage   45.36%   46.63%   +1.26%     
==========================================
  Files         244      252       +8     
  Lines       13333    14287     +954     
  Branches     2719     2937     +218     
==========================================
+ Hits         6049     6663     +614     
- Misses       6983     7266     +283     
- Partials      301      358      +57

Flag	Coverage Δ
unittests	`46.63% <ø> (+1.26%)`	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.
see 179 files with indirect coverage changes

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

src/portal/e2e/trivy.spec.ts

+
+  // Perform the request (insecure curl -> we skip TLS validation)
+  // If you're using node-fetch or running in Node, set NODE_TLS_REJECT_UNAUTHORIZED=0
+  process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0';


src/portal/e2e/trivy.spec.ts

+}
+
+export function runCommand(command: string): string {
+  console.log(`\n$ ${command}`);


src/portal/e2e/trivy.spec.ts

+    console.log('✅ Command output:\n', output.trim()); // print captured output
+    return output.trim(); // return for further processing
+  } catch (error: any) {
+    console.error(`❌ Command failed: ${command}`);


src/portal/e2e/webhook.spec.ts

+ * Runs a shell command and returns the output
+ */
+function runCommand(command: string): string {
+    console.log(`\n$ ${command}`);


src/portal/e2e/webhook.spec.ts

+        console.log('Command output:\n', output.trim());
+        return output.trim();
+    } catch (error: any) {
+        console.error(`Command failed: ${command}`);


adityachopra29 · 2026-02-05T18:51:41Z

Looking into it..

Signed-off-by: Aditya Chopra <adityachopra2912@gmail.com>

adityachopra29 · 2026-02-09T11:19:25Z

I had made the changes a few days ago, could someone please run the CI? Also is there a better alternative for doing the same? I dont want to nag anybody repeatedly. Thanks!

bupd and others added 18 commits November 26, 2025 17:46

feat: add playwright config

b0ba368

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: add login logout playwright test

4f6e30b

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: add docker push manifest list script

79afcf0

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: update playwright global config

fc4540a

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: add trivy test

86dace1

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: dockerise playwright

6ce29e1

Signed-off-by: bupd <bupdprasanth@gmail.com>

fix: playwright dockerfile

a643e26

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: working ui trivy tests

cccb00c

Signed-off-by: bupd <bupdprasanth@gmail.com>

fix: update e2e dockerfile

ca0de75

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: add Readme for Playwright tests

5b0fa10

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: add webhook server

7e3edf9

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: init webhook test

39590d4

Signed-off-by: bupd <bupdprasanth@gmail.com>

fix: update readme

f5aa14e

Signed-off-by: bupd <bupdprasanth@gmail.com>

feat: update webhook tests to use role-based selector

87b9f97

Signed-off-by: bupd <bupdprasanth@gmail.com>

fix: multiple events being made

6d1db6b

Signed-off-by: bupd <bupdprasanth@gmail.com>

fix(e2e): add Harbor CA cert to system's trusted certificates

dd04855

Signed-off-by: Aditya Chopra <adityachopra2912@gmail.com>

fix(e2e): add webhook server endpoint in CI

bcbee3a

Signed-off-by: Aditya Chopra <adityachopra2912@gmail.com>

adityachopra29 requested a review from a team as a code owner January 31, 2026 10:23

github-actions bot assigned MinerYang, OrlinVasilev and stonezdj Jan 31, 2026

Merge branch 'main' into playr-tough-modification

70f4b0d

github-advanced-security bot found potential problems Feb 4, 2026

View reviewed changes

fix: change order of CI jobs

4343f8f

Signed-off-by: Aditya Chopra <adityachopra2912@gmail.com>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: Migrate Trivy.robot(Security Hub Testcase) to playwright ( With CI fix ) #22791

feat: Migrate Trivy.robot(Security Hub Testcase) to playwright ( With CI fix ) #22791

Uh oh!

adityachopra29 commented Jan 31, 2026

Uh oh!

adityachopra29 commented Jan 31, 2026

Uh oh!

codecov bot commented Feb 4, 2026

Uh oh!

Check failure

Check failure

Check failure

Check failure

Check failure

adityachopra29 commented Feb 5, 2026

Uh oh!

adityachopra29 commented Feb 9, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

feat: Migrate Trivy.robot(Security Hub Testcase) to playwright ( With CI fix ) #22791

Are you sure you want to change the base?

feat: Migrate Trivy.robot(Security Hub Testcase) to playwright ( With CI fix ) #22791

Uh oh!

Conversation

adityachopra29 commented Jan 31, 2026

Comprehensive Summary of your change

Issue being fixed

Uh oh!

adityachopra29 commented Jan 31, 2026

Uh oh!

codecov bot commented Feb 4, 2026

Codecov Report

Uh oh!

Check failure

Check failure

Uh oh!

Check failure

Uh oh!

Check failure

Uh oh!

Check failure

Uh oh!

adityachopra29 commented Feb 5, 2026

Uh oh!

adityachopra29 commented Feb 9, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

adityachopra29 commented Feb 9, 2026 •

edited

Loading