feat(ui): add findings grouped view (#10425)

Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>

Author: 3 people

ui/CHANGELOG.md

@@ -4,6 +4,10 @@ All notable changes to the **Prowler UI** are documented in this file.
 
 ## [1.23.0] (Prowler UNRELEASED)
 
+### 🚀 Added
+
+- Findings grouped view with drill-down table showing resources per check, resource detail drawer, infinite scroll pagination, and bulk mute support [(#10425)](https://github.com/prowler-cloud/prowler/pull/10425)
+
 ### 🔄 Changed
 
 - Attack Paths custom openCypher queries now use a code editor with syntax highlighting and line numbers [(#10445)](https://github.com/prowler-cloud/prowler/pull/10445)
@@ -31,6 +35,14 @@ All notable changes to the **Prowler UI** are documented in this file.
 
 ### 🚀 Added
 
+- Attack Paths custom openCypher queries with Cartography schema guidance and clearer execution errors [(#10397)](https://github.com/prowler-cloud/prowler/pull/10397)
+
+---
+
+## [1.21.0] (Prowler v5.21.0)
+
+### 🚀 Added
+
 - Skill system to Lighthouse AI [(#10322)](https://github.com/prowler-cloud/prowler/pull/10322)
 - Skill for creating custom queries on Attack Paths [(#10323)](https://github.com/prowler-cloud/prowler/pull/10323)
 

ui/actions/attack-paths/scans.adapter.ts

@@ -1,3 +1,4 @@
+import { formatDuration } from "@/lib/date-utils";
 import { MetaDataProps } from "@/types";
 import { AttackPathScan, AttackPathScansResponse } from "@/types/attack-paths";
 
@@ -61,18 +62,6 @@ export function adaptAttackPathScansResponse(
   return { data: enrichedData, metadata };
 }
 
-/**
- * Format duration in seconds to human-readable format
- *
- * @param seconds - Duration in seconds
- * @returns Formatted duration string (e.g., "2m 30s")
- */
-function formatDuration(seconds: number): string {
-  const minutes = Math.floor(seconds / 60);
-  const remainingSeconds = seconds % 60;
-  return `${minutes}m ${remainingSeconds}s`;
-}
-
 /**
  * Check if a scan is recent (completed within last 24 hours)
  *

ui/actions/finding-groups/finding-groups.adapter.ts

@@ -0,0 +1,140 @@
+import {
+  FindingGroupRow,
+  FindingResourceRow,
+  FINDINGS_ROW_TYPE,
+  FindingStatus,
+  ProviderType,
+  Severity,
+} from "@/types";
+
+/**
+ * API response shape for a finding group (JSON:API).
+ * Each group represents a unique check_id with aggregated counts.
+ *
+ * Fields come from FindingGroupSerializer which aggregates
+ * FindingGroupDailySummary rows by check_id.
+ */
+interface FindingGroupAttributes {
+  check_id: string;
+  check_title: string | null;
+  check_description: string | null;
+  severity: string;
+  status: string; // "FAIL" | "PASS" | "MUTED" (already uppercase)
+  impacted_providers: string[];
+  resources_total: number;
+  resources_fail: number;
+  pass_count: number;
+  fail_count: number;
+  muted_count: number;
+  new_count: number;
+  changed_count: number;
+  first_seen_at: string | null;
+  last_seen_at: string | null;
+  failing_since: string | null;
+}
+
+interface FindingGroupApiItem {
+  type: "finding-groups";
+  id: string;
+  attributes: FindingGroupAttributes;
+}
+
+/**
+ * Transforms the API response for finding groups into FindingGroupRow[].
+ */
+export function adaptFindingGroupsResponse(
+  apiResponse: any,
+): FindingGroupRow[] {
+  if (!apiResponse?.data || !Array.isArray(apiResponse.data)) {
+    return [];
+  }
+
+  return apiResponse.data.map((item: FindingGroupApiItem) => ({
+    id: item.id,
+    rowType: FINDINGS_ROW_TYPE.GROUP,
+    checkId: item.attributes.check_id,
+    checkTitle: item.attributes.check_title || item.attributes.check_id,
+    severity: item.attributes.severity as Severity,
+    status: item.attributes.status as FindingStatus,
+    resourcesTotal: item.attributes.resources_total,
+    resourcesFail: item.attributes.resources_fail,
+    newCount: item.attributes.new_count,
+    changedCount: item.attributes.changed_count,
+    mutedCount: item.attributes.muted_count,
+    providers: (item.attributes.impacted_providers || []) as ProviderType[],
+    updatedAt: item.attributes.last_seen_at || "",
+  }));
+}
+
+/**
+ * API response shape for a finding group resource (drill-down).
+ * Endpoint: /finding-groups/{check_id}/resources
+ *
+ * Each item has nested `resource` and `provider` objects in attributes
+ * (NOT JSON:API included — it's a custom serializer).
+ */
+interface ResourceInfo {
+  uid: string;
+  name: string;
+  service: string;
+  region: string;
+  type: string;
+  resource_group: string;
+}
+
+interface ProviderInfo {
+  type: string;
+  uid: string;
+  alias: string;
+}
+
+interface FindingGroupResourceAttributes {
+  resource: ResourceInfo;
+  provider: ProviderInfo;
+  status: string;
+  severity: string;
+  first_seen_at: string | null;
+  last_seen_at: string | null;
+  muted_reason?: string | null;
+}
+
+interface FindingGroupResourceApiItem {
+  type: "finding-group-resources";
+  id: string;
+  attributes: FindingGroupResourceAttributes;
+}
+
+/**
+ * Transforms the API response for finding group resources (drill-down)
+ * into FindingResourceRow[].
+ */
+export function adaptFindingGroupResourcesResponse(
+  apiResponse: any,
+  checkId: string,
+): FindingResourceRow[] {
+  if (!apiResponse?.data || !Array.isArray(apiResponse.data)) {
+    return [];
+  }
+
+  return apiResponse.data.map((item: FindingGroupResourceApiItem) => ({
+    id: item.id,
+    rowType: FINDINGS_ROW_TYPE.RESOURCE,
+    findingId: item.id,
+    checkId,
+    providerType: (item.attributes.provider?.type || "aws") as ProviderType,
+    providerAlias: item.attributes.provider?.alias || "",
+    providerUid: item.attributes.provider?.uid || "",
+    resourceName: item.attributes.resource?.name || "-",
+    resourceGroup: item.attributes.resource?.resource_group || "-",
+    resourceUid: item.attributes.resource?.uid || "-",
+    service: item.attributes.resource?.service || "-",
+    region: item.attributes.resource?.region || "-",
+    severity: (item.attributes.severity || "informational") as Severity,
+    status: item.attributes.status,
+    isMuted: item.attributes.status === "MUTED",
+    // TODO: remove fallback once the API returns muted_reason in finding-group-resources
+    mutedReason: item.attributes.muted_reason || undefined,
+    firstSeenAt: item.attributes.first_seen_at,
+    lastSeenAt: item.attributes.last_seen_at,
+  }));
+}

ui/actions/finding-groups/finding-groups.ts

@@ -0,0 +1,144 @@
+"use server";
+
+import { redirect } from "next/navigation";
+
+import { apiBaseUrl, getAuthHeaders } from "@/lib";
+import { appendSanitizedProviderFilters } from "@/lib/provider-filters";
+import { handleApiResponse } from "@/lib/server-actions-helper";
+
+/**
+ * Maps filter[search] to filter[check_title__icontains] for finding-groups.
+ * The finding-groups endpoint supports check_title__icontains for substring
+ * matching on the human-readable check title displayed in the table.
+ */
+function mapSearchFilter(
+  filters: Record<string, string | string[] | undefined>,
+): Record<string, string | string[] | undefined> {
+  const mapped = { ...filters };
+  const searchValue = mapped["filter[search]"];
+  if (searchValue) {
+    mapped["filter[check_title__icontains]"] = searchValue;
+    delete mapped["filter[search]"];
+  }
+  return mapped;
+}
+
+export const getFindingGroups = async ({
+  page = 1,
+  pageSize = 10,
+  sort = "",
+  filters = {},
+}) => {
+  const headers = await getAuthHeaders({ contentType: false });
+
+  if (isNaN(Number(page)) || page < 1) redirect("/findings");
+
+  const url = new URL(`${apiBaseUrl}/finding-groups`);
+
+  if (page) url.searchParams.append("page[number]", page.toString());
+  if (pageSize) url.searchParams.append("page[size]", pageSize.toString());
+  if (sort) url.searchParams.append("sort", sort);
+
+  appendSanitizedProviderFilters(url, mapSearchFilter(filters));
+
+  try {
+    const response = await fetch(url.toString(), { headers });
+    return handleApiResponse(response);
+  } catch (error) {
+    console.error("Error fetching finding groups:", error);
+    return undefined;
+  }
+};
+
+export const getLatestFindingGroups = async ({
+  page = 1,
+  pageSize = 10,
+  sort = "",
+  filters = {},
+}) => {
+  const headers = await getAuthHeaders({ contentType: false });
+
+  if (isNaN(Number(page)) || page < 1) redirect("/findings");
+
+  const url = new URL(`${apiBaseUrl}/finding-groups/latest`);
+
+  if (page) url.searchParams.append("page[number]", page.toString());
+  if (pageSize) url.searchParams.append("page[size]", pageSize.toString());
+  if (sort) url.searchParams.append("sort", sort);
+
+  appendSanitizedProviderFilters(url, mapSearchFilter(filters));
+
+  try {
+    const response = await fetch(url.toString(), { headers });
+    return handleApiResponse(response);
+  } catch (error) {
+    console.error("Error fetching latest finding groups:", error);
+    return undefined;
+  }
+};
+
+export const getFindingGroupResources = async ({
+  checkId,
+  page = 1,
+  pageSize = 20,
+  filters = {},
+}: {
+  checkId: string;
+  page?: number;
+  pageSize?: number;
+  filters?: Record<string, string | string[] | undefined>;
+}) => {
+  const headers = await getAuthHeaders({ contentType: false });
+
+  const url = new URL(`${apiBaseUrl}/finding-groups/${checkId}/resources`);
+
+  if (page) url.searchParams.append("page[number]", page.toString());
+  if (pageSize) url.searchParams.append("page[size]", pageSize.toString());
+
+  appendSanitizedProviderFilters(url, filters);
+
+  try {
+    const response = await fetch(url.toString(), {
+      headers,
+    });
+
+    return handleApiResponse(response);
+  } catch (error) {
+    console.error("Error fetching finding group resources:", error);
+    return undefined;
+  }
+};
+
+export const getLatestFindingGroupResources = async ({
+  checkId,
+  page = 1,
+  pageSize = 20,
+  filters = {},
+}: {
+  checkId: string;
+  page?: number;
+  pageSize?: number;
+  filters?: Record<string, string | string[] | undefined>;
+}) => {
+  const headers = await getAuthHeaders({ contentType: false });
+
+  const url = new URL(
+    `${apiBaseUrl}/finding-groups/latest/${checkId}/resources`,
+  );
+
+  if (page) url.searchParams.append("page[number]", page.toString());
+  if (pageSize) url.searchParams.append("page[size]", pageSize.toString());
+
+  appendSanitizedProviderFilters(url, filters);
+
+  try {
+    const response = await fetch(url.toString(), {
+      headers,
+    });
+
+    return handleApiResponse(response);
+  } catch (error) {
+    console.error("Error fetching latest finding group resources:", error);
+    return undefined;
+  }
+};

ui/actions/finding-groups/index.ts

@@ -0,0 +1,2 @@
+export * from "./finding-groups";
+export * from "./finding-groups.adapter";