Advanced Search

Release 88 introduced an Early Access version of Advanced Search capability within Nexus IQ Server.
The Early Access feature is an opt-in feature which can only be enabled from within the UI. If you decide to try this feature and encounter any degradation in performance then it is advised to disable this feature and provide feedback.

Please provide any feedback on this feature by commenting on this post.

As this feature is early access, there are a number of caveats:

  • The resulting dataset does not adhere to any configured permissions (all results are displayed) (implemented in version 94)
  • To see new data in the results a re-index is required. This can either be automated using the provided REST API or manually from the UI
  • Keyword fields may subsequently change on different releases

Download from here to try it out.

9 Likes

@mdodgson It would be pretty cool to have a “saved” search capability i.e most used component, all level 10 components etc.

Also a top N previous searches drop down perhaps.

This is a really powerful feature and I really like the early access approach so other engineers can get a view and feed into its evolution.

2 Likes

@mdodgson I changed the vulnerabilityStatus from Open to Confirmed on a vulnerability in a report and ran a search as below
applicationName:solid AND vulnerabilityStatus:Confirmed no results were returned until I ran a “reindex”. Is this by design?

It is currently by design

UPDATE:

Release 91 introduced a query builder to aid in building your search queries. Clicking on any of the keywords will add the search term to your search query and mark the term as in use as indicated by the screenshot below:

Additionally, we added a collapsible section offering useful examples of search queries that are possible, these queries can be copied as seen into the search window.

It would be helpful to break out the component specific fields into their own group in the query builder. It took a bit to find them in the Security Vulnerability section. Thanks for the hard work! Its starting to look good!

We’ve been playing around with this functionality some. We noticed after the update to v94, a few folks were no longer able to do searches. We did some testing today and found that only users in the Policy Admin role could do a search.

Hi Joe,

This was changed in the recent v94 release 2020 Release Notes
As can be seen from the original post in this topic we also struck through one of the caveats

Thanks Mark, just saw the mention in the release notes but the update to the Advanced Search page.

We’ve had some playing around with this app. Since the upgrade to v94 we found that a few people could no longer perform searches. Today we have carried out some tests and found that only users in the position of policy admin could do a search.

Hi @dt3830806

Please see comments above. This was a recent change and was documented in the release notes https://community.sonatype.com/t/advanced-search-early-access/3564/8?u=mdodgson

Some feedback - don’t clear the search field after a search. It’s nice to see an error message if the query is incorrectly structured, but let us edit the existing query.

The querybuilder is a nice feature. I’d like to see more examples - for instance how to build a query that returns all applications under a specific organization, and lists the CVEs found in that application.
ex: organizationName:“MyOrg” AND applicationName:* AND vulnerabilityId:“CVE*”

I’d also like to able to export the search results to a CSV or spreadsheet.

UPDATE:

Release 98 starts adding an incremental update of the search index that runs automatically when the application data is changed. Automatic indexing currently covers organizations, applications, application categories, component labels, policies, and security vulnerabilities found during policy evaluations. Automatic indexing only applies to data changes made whilst Advanced Search was enabled. In order for Advanced Search to index historical data, you must run re-index manually.

1 Like