VS Code - Ignored Vulnerabilities and CxOne Assist Popover UI Not Supported in Light Theme (AST-114409)

[cx-rah-pid]

By submitting a PR to this repository, you agree to the terms within the Checkmarx Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

This PR addresses the issue where CxOne Assist in VS Code did not support light mode properly in the following areas:

• The popover UI was not styled correctly for light mode.
• The Ignored Vulnerabilities log page had visibility issues in light mode.

Previously, these elements displayed correctly only in dark mode.

References

AST-114409 - VS Code | CxOne Assist | VS Code resulted in not supporting light mode | ignored vulnerabilities issue
AST-114410 - VS Code | CxOne Assist | VS Code resulted in not supporting light mode | popover issue
AST-115359 - VS Code | CxOne Assist Disabled When Checkmarx MCP Enabled on CxOne Web Portal and Logging in via OAuth Using VS Code Plugin

Testing

Case 1: Verify Popover UI in Light Mode

• VS Code theme set to Light Mode.
• Open CxOne Assist popover.
• Observe the UI elements (background, text, buttons).
  Expected Result: - Popover UI should be clearly visible with proper contrast and styling consistent with the light theme design.

Case 2: Verify Popover UI in Dark Mode

• VS Code theme set to Dark Mode.
• Open CxOne Assist popover.
• Observe the UI elements.
  Expected Result: - Popover UI should remain unchanged and properly styled for dark mode.

Case 3: Verify Ignored Vulnerabilities Log Page in Light Mode

• VS Code theme set to Light Mode.
• Navigate to the Ignored Vulnerabilities log page.
• Review the readability and UI consistency.
  Expected Result: - Text and UI elements should be easily readable with appropriate colors and no visual glitches.

Case 4: Verify Ignored Vulnerabilities Log Page in Dark Mode

• VS Code theme set to Dark Mode.
• Navigate to the Ignored Vulnerabilities log page.
• Review the readability and UI consistency.
  Expected Result: - Log page should display correctly as before with no regressions.

Case 5: Switching Themes on the Fly

• VS Code is open with CxOne Assist active.
• Toggle VS Code theme from Light to Dark and vice versa.
• Observe the popover and ignored vulnerabilities page.
  Expected Result:- UI should dynamically update without requiring a restart, maintaining correct styling in both modes.

Case 6: CxOne Assist Enable in Welcome page

• Enable Checkmarx Model Context Protocol (MCP) in the CxOne Web Portal as an admin.
• Open Visual Studio Code.
• Install and launch the CxOne VS Code plugin (if not already installed).
• Log in using OAuth via the CxOne plugin.
• Check the plugin’s welcome page for CxOne Assist availability.

Case 7: CxOne Assist Enable in Welcome page

• Disable Checkmarx Model Context Protocol (MCP) in the CxOne Web Portal as an admin.
• Open Visual Studio Code.
• Install and launch the CxOne VS Code plugin (if not already installed).
• Log in using OAuth via the CxOne plugin.
• Check the plugin’s welcome page for CxOne Assist availability. (Checkbox will not display)

Checklist

• I have added documentation for new/changed functionality in this PR (if applicable).
• All active GitHub checks for tests, formatting, and security are passing
• The correct base branch is being used

[github-actions]

Checkmarx One – Scan Summary & Details – 8a61cedd-6c66-469d-8b1e-43af34e8c9dc

Great job! No new security vulnerabilities introduced in this pull request