From 6ef0e95a22b6cda49051057a77bb5f7053554bc8 Mon Sep 17 00:00:00 2001
From: milan-deepfence <rkmilansingh@gmail.com>
Date: Wed, 25 Oct 2023 22:21:07 +0530
Subject: [PATCH 1/4] wip: masking/unmsking

---
 .../apps/dashboard/api-spec.json              |   4 +-
 .../models/ModelScanResultsMaskRequest.ts     |  26 +-
 .../pages/VulnerabilityScanResults.tsx        | 279 ++++++++++++++++--
 .../dashboard/src/queries/vulnerability.tsx   |   2 +
 4 files changed, 273 insertions(+), 38 deletions(-)

diff --git a/deepfence_frontend/apps/dashboard/api-spec.json b/deepfence_frontend/apps/dashboard/api-spec.json
index 6a96bf88ee..3bdd3be856 100644
--- a/deepfence_frontend/apps/dashboard/api-spec.json
+++ b/deepfence_frontend/apps/dashboard/api-spec.json
@@ -12787,8 +12787,10 @@
         "required": ["scan_id", "result_ids", "scan_type"],
         "type": "object",
         "properties": {
+          "entity_id": { "type": "string" },
+          "image_name": { "type": "string" },
+          "image_tag": { "type": "string" },
           "mask_across_hosts_and_images": { "type": "boolean" },
-          "mask_in_this_host_or_image_tags": { "type": "boolean" },
           "result_ids": {
             "type": "array",
             "items": { "type": "string" },
diff --git a/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts b/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts
index 2d2e4c1c94..e286ddc913 100644
--- a/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts
+++ b/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts
@@ -21,16 +21,28 @@ import { exists, mapValues } from '../runtime';
 export interface ModelScanResultsMaskRequest {
     /**
      * 
-     * @type {boolean}
+     * @type {string}
      * @memberof ModelScanResultsMaskRequest
      */
-    mask_across_hosts_and_images?: boolean;
+    entity_id?: string;
+    /**
+     * 
+     * @type {string}
+     * @memberof ModelScanResultsMaskRequest
+     */
+    image_name?: string;
+    /**
+     * 
+     * @type {string}
+     * @memberof ModelScanResultsMaskRequest
+     */
+    image_tag?: string;
     /**
      * 
      * @type {boolean}
      * @memberof ModelScanResultsMaskRequest
      */
-    mask_in_this_host_or_image_tags?: boolean;
+    mask_across_hosts_and_images?: boolean;
     /**
      * 
      * @type {Array<string>}
@@ -87,8 +99,10 @@ export function ModelScanResultsMaskRequestFromJSONTyped(json: any, ignoreDiscri
     }
     return {
         
+        'entity_id': !exists(json, 'entity_id') ? undefined : json['entity_id'],
+        'image_name': !exists(json, 'image_name') ? undefined : json['image_name'],
+        'image_tag': !exists(json, 'image_tag') ? undefined : json['image_tag'],
         'mask_across_hosts_and_images': !exists(json, 'mask_across_hosts_and_images') ? undefined : json['mask_across_hosts_and_images'],
-        'mask_in_this_host_or_image_tags': !exists(json, 'mask_in_this_host_or_image_tags') ? undefined : json['mask_in_this_host_or_image_tags'],
         'result_ids': json['result_ids'],
         'scan_id': json['scan_id'],
         'scan_type': json['scan_type'],
@@ -104,8 +118,10 @@ export function ModelScanResultsMaskRequestToJSON(value?: ModelScanResultsMaskRe
     }
     return {
         
+        'entity_id': value.entity_id,
+        'image_name': value.image_name,
+        'image_tag': value.image_tag,
         'mask_across_hosts_and_images': value.mask_across_hosts_and_images,
-        'mask_in_this_host_or_image_tags': value.mask_in_this_host_or_image_tags,
         'result_ids': value.result_ids,
         'scan_id': value.scan_id,
         'scan_type': value.scan_type,
diff --git a/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
index 64a94d6901..d28c2821c2 100644
--- a/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
@@ -121,7 +121,7 @@ const action = async ({
   const nodeIds = (formData.getAll('nodeIds[]') ?? []) as string[];
   const actionType = formData.get('actionType');
   const _scanId = scanId;
-  const mask = formData.get('maskHostAndImages');
+  const maskHostAndImages = formData.get('maskHostAndImages');
   if (!_scanId) {
     throw new Error('Scan ID is required');
   }
@@ -184,13 +184,30 @@ const action = async ({
     const apiFunctionApi = apiWrapper({
       fn: apiFunction,
     });
+    const maskInfo: {
+      image_name?: string;
+      image_tag?: string;
+      entity_id?: string;
+    } = {};
+    const hostId = formData.get('hostId');
+    const imageName = formData.get('imageName');
+    const imageTag = formData.get('imageTag');
+    if (hostId) {
+      maskInfo.entity_id = hostId.toString();
+    }
+    if (imageName) {
+      maskInfo.image_name = imageName.toString();
+    }
+    if (imageTag) {
+      maskInfo.image_tag = imageTag.toString();
+    }
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
-        mask_across_hosts_and_images: mask === 'maskHostAndImages',
-        mask_in_this_host_or_image_tags: mask !== 'maskHostAndImages',
+        mask_across_hosts_and_images: maskHostAndImages === 'true',
         result_ids: [...nodeIds],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.VulnerabilityScan,
+        ...maskInfo,
       },
     });
     if (!result.ok) {
@@ -774,13 +791,30 @@ const ActionDropdown = ({
   setShowDeleteDialog,
   onTableAction,
   nodeType,
+  maskInfo,
 }: {
   ids: string[];
   trigger: React.ReactNode;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
   nodeType: string;
+  maskInfo:
+    | {
+        imageName?: string;
+        imageTag?: string;
+        hostId?: string;
+      }
+    | undefined;
 }) => {
   const isHost = nodeType === 'host';
   return (
@@ -789,27 +823,93 @@ const ActionDropdown = ({
       align={'start'}
       content={
         <>
-          <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.MASK, '')}>
-            {isHost
-              ? 'Mask vulnerability for this host'
-              : 'Mask vulnerability for this image(all tags)'}
-          </DropdownItem>
+          {isHost ? (
+            <DropdownItem
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.MASK, {
+                  hostId: maskInfo?.hostId,
+                })
+              }
+            >
+              Mask vulnerability for this host
+            </DropdownItem>
+          ) : (
+            <>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    imageName: maskInfo?.imageName,
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Mask vulnerability for this image tag
+              </DropdownItem>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    imageName: maskInfo?.imageName,
+                  })
+                }
+              >
+                Mask vulnerability for this image(all tags)
+              </DropdownItem>
+            </>
+          )}
           <DropdownItem
-            onClick={() => onTableAction(ids, ActionEnumType.MASK, 'maskHostAndImages')}
+            onClick={() =>
+              onTableAction(ids, ActionEnumType.MASK, {
+                maskHostAndImages: true,
+              })
+            }
           >
             Mask vulnerability across hosts and images
           </DropdownItem>
+
           <DropdownSeparator />
-          <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.UNMASK, '')}>
-            {isHost
-              ? 'Un-mask vulnerability for this host'
-              : 'Un-mask vulnerability for this image(all tags)'}
-          </DropdownItem>
+          {isHost ? (
+            <DropdownItem
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.UNMASK, {
+                  hostId: maskInfo?.hostId,
+                })
+              }
+            >
+              Un-mask vulnerability for this host
+            </DropdownItem>
+          ) : (
+            <>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    imageName: maskInfo?.imageName,
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Un-mask vulnerability for this image tag
+              </DropdownItem>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Un-mask vulnerability for this image(all tags)
+              </DropdownItem>
+            </>
+          )}
           <DropdownItem
-            onClick={() => onTableAction(ids, ActionEnumType.UNMASK, 'maskHostAndImages')}
+            onClick={() =>
+              onTableAction(ids, ActionEnumType.UNMASK, {
+                maskHostAndImages: true,
+              })
+            }
           >
             Un-mask vulnerability across hosts and images
           </DropdownItem>
+
           <DropdownSeparator />
           <DropdownItem
             onClick={() => {
@@ -841,11 +941,27 @@ const BulkActions = ({
   setIdsToDelete,
   setShowDeleteDialog,
   onTableAction,
+  maskInfo,
 }: {
   ids: string[];
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
+  maskInfo?: {
+    hostId?: string;
+    imageName?: string;
+    imageTag?: string;
+    maskHostAndImages?: boolean;
+  };
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
   const {
@@ -865,13 +981,45 @@ const BulkActions = ({
         disabled={!ids.length}
         content={
           <>
-            <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.MASK, '')}>
-              {isHost
-                ? 'Mask vulnerabilities for this host'
-                : 'Mask vulnerabilities for this image(all tags)'}
-            </DropdownItem>
+            {isHost ? (
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    hostId: maskInfo?.hostId,
+                  })
+                }
+              >
+                Mask vulnerabilities for this host
+              </DropdownItem>
+            ) : (
+              <>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.MASK, {
+                      imageName: maskInfo?.imageName,
+                      imageTag: maskInfo?.imageTag,
+                    })
+                  }
+                >
+                  Mask vulnerabilities for this image tag
+                </DropdownItem>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.MASK, {
+                      imageName: maskInfo?.imageName,
+                    })
+                  }
+                >
+                  Mask vulnerabilities for this image(all tags)
+                </DropdownItem>
+              </>
+            )}
             <DropdownItem
-              onClick={() => onTableAction(ids, ActionEnumType.MASK, 'maskHostAndImages')}
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.MASK, {
+                  maskHostAndImages: true,
+                })
+              }
             >
               Mask vulnerabilities across hosts and images
             </DropdownItem>
@@ -895,14 +1043,44 @@ const BulkActions = ({
         disabled={!ids.length}
         content={
           <>
-            <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.UNMASK, '')}>
-              {isHost
-                ? 'Un-mask vulnerabilities for this host'
-                : 'Un-mask vulnerabilities for this image(all tags)'}
-            </DropdownItem>
+            {isHost ? (
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    hostId: maskInfo?.hostId,
+                  })
+                }
+              >
+                Un-mask vulnerabilities for this host
+              </DropdownItem>
+            ) : (
+              <>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.UNMASK, {
+                      imageName: maskInfo?.imageName,
+                      imageTag: maskInfo?.imageTag,
+                    })
+                  }
+                >
+                  Un-mask vulnerabilities for this image tag
+                </DropdownItem>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.UNMASK, {
+                      imageTag: maskInfo?.imageTag,
+                    })
+                  }
+                >
+                  Un-mask vulnerabilities for this image(all tags)
+                </DropdownItem>
+              </>
+            )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, 'maskHostAndImages')
+                onTableAction(ids, ActionEnumType.UNMASK, {
+                  maskHostAndImages: true,
+                })
               }
             >
               Un-mask vulnerabilities across hosts and images
@@ -1311,12 +1489,35 @@ const CVEResults = () => {
   const fetcher = useFetcher<ActionData>();
 
   const onTableAction = useCallback(
-    (ids: string[], actionType: string, maskHostAndImages?: string) => {
+    (
+      ids: string[],
+      actionType: string,
+      maskInfo?: {
+        hostId?: string;
+        imageName?: string;
+        imageTag?: string;
+        maskHostAndImages?: boolean;
+      },
+    ) => {
       const formData = new FormData();
       formData.append('actionType', actionType);
 
       if (actionType === ActionEnumType.MASK || actionType === ActionEnumType.UNMASK) {
-        formData.append('maskHostAndImages', maskHostAndImages ?? '');
+        if (maskInfo?.maskHostAndImages) {
+          formData.append(
+            'maskHostAndImages',
+            maskInfo?.maskHostAndImages?.toString() ?? '',
+          );
+        }
+        if (maskInfo?.hostId) {
+          formData.append('hostId', maskInfo.hostId?.toString() ?? '');
+        }
+        if (maskInfo?.imageName) {
+          formData.append('imageName', maskInfo.imageName?.toString() ?? '');
+        }
+        if (maskInfo?.imageTag) {
+          formData.append('imageTag', maskInfo.imageTag?.toString() ?? '');
+        }
       }
 
       ids.forEach((item) => formData.append('nodeIds[]', item));
@@ -1432,7 +1633,16 @@ const CVETable = ({
   rowSelectionState,
   setRowSelectionState,
 }: {
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
   rowSelectionState: RowSelectionState;
@@ -1462,6 +1672,11 @@ const CVETable = ({
             setShowDeleteDialog={setShowDeleteDialog}
             onTableAction={onTableAction}
             nodeType={nodeType}
+            maskInfo={{
+              imageName: data.data?.dockerImageName,
+              imageTag: data.data?.imageTag,
+              hostId: data.data?.hostId,
+            }}
             trigger={
               <button className="p-1">
                 <div className="h-[16px] w-[16px] dark:text-text-text-and-icon rotate-90">
diff --git a/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx b/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
index a84005e68e..a27b5b2ab3 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
@@ -438,6 +438,8 @@ export const vulnerabilityQueries = createQueryKeys('vulnerability', {
             timestamp: resultVulnerabilityScanResponse.value.updated_at,
             tableData: resultVulnerabilityScanResponse.value.vulnerabilities ?? [],
             dockerImageName: resultVulnerabilityScanResponse.value.docker_image_name,
+            imageTag: resultVulnerabilityScanResponse.value.docker_image_name,
+            hostId: resultVulnerabilityScanResponse.value.node_name,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,

From 9e0441c5b9bc3f01f5cd7872bd9abb60fc17f166 Mon Sep 17 00:00:00 2001
From: milan-deepfence <rkmilansingh@gmail.com>
Date: Thu, 26 Oct 2023 16:59:47 +0530
Subject: [PATCH 2/4] added masking and unmaksing for host, pending for image

---
 .../malwares/pages/MalwareScanResults.tsx     | 278 +++++++++++++++---
 .../secrets/pages/SecretScanResults.tsx       | 277 ++++++++++++++---
 .../pages/VulnerabilityScanResults.tsx        |  40 +--
 .../apps/dashboard/src/queries/malware.tsx    |   2 +
 .../apps/dashboard/src/queries/secret.tsx     |   2 +
 .../dashboard/src/queries/vulnerability.tsx   |   2 +-
 6 files changed, 503 insertions(+), 98 deletions(-)

diff --git a/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx
index 24213c4763..dc1c6f0884 100644
--- a/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx
@@ -181,13 +181,31 @@ const action = async ({
     const apiFunctionApi = apiWrapper({
       fn: apiFunction,
     });
+    const maskInfo: {
+      image_name?: string;
+      image_tag?: string;
+      entity_id?: string;
+    } = {};
+    const hostId = formData.get('hostId');
+    const imageName = formData.get('imageName');
+    const imageTag = formData.get('imageTag');
+    if (hostId) {
+      maskInfo.entity_id = hostId.toString();
+    }
+    if (imageName) {
+      maskInfo.image_name = imageName.toString();
+    }
+    if (imageTag) {
+      maskInfo.image_tag = imageTag.toString();
+    }
+
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
-        mask_across_hosts_and_images: mask === 'maskHostAndImages',
-        mask_in_this_host_or_image_tags: mask !== 'maskHostAndImages',
+        mask_across_hosts_and_images: mask === 'true',
         result_ids: [...ids],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.MalwareScan,
+        ...maskInfo,
       },
     });
     if (!result.ok) {
@@ -809,13 +827,30 @@ const ActionDropdown = ({
   setShowDeleteDialog,
   onTableAction,
   nodeType,
+  maskInfo,
 }: {
   ids: string[];
   trigger: React.ReactNode;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
   nodeType: string;
+  maskInfo:
+    | {
+        imageName?: string;
+        imageTag?: string;
+        hostId?: string;
+      }
+    | undefined;
 }) => {
   const isHost = nodeType === 'host';
   return (
@@ -824,24 +859,88 @@ const ActionDropdown = ({
       align={'start'}
       content={
         <>
-          <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.MASK, '')}>
-            {isHost
-              ? 'Mask malware for this host'
-              : 'Mask malware for this image(all tags)'}
-          </DropdownItem>
+          {isHost ? (
+            <DropdownItem
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.MASK, {
+                  hostId: maskInfo?.hostId,
+                })
+              }
+            >
+              Mask malware for this host
+            </DropdownItem>
+          ) : (
+            <>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    imageName: maskInfo?.imageName,
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Mask malware for this image tag
+              </DropdownItem>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    imageName: maskInfo?.imageName,
+                  })
+                }
+              >
+                Mask malware for this image(all tags)
+              </DropdownItem>
+            </>
+          )}
           <DropdownItem
-            onClick={() => onTableAction(ids, ActionEnumType.MASK, 'maskHostAndImages')}
+            onClick={() =>
+              onTableAction(ids, ActionEnumType.MASK, {
+                maskHostAndImages: true,
+              })
+            }
           >
             Mask malware across hosts and images
           </DropdownItem>
           <DropdownSeparator />
-          <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.UNMASK, '')}>
-            {isHost
-              ? 'Un-mask malware for this host'
-              : 'Un-mask malware for this image(all tags)'}
-          </DropdownItem>
+          {isHost ? (
+            <DropdownItem
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.UNMASK, {
+                  hostId: maskInfo?.hostId,
+                })
+              }
+            >
+              Un-mask malware for this host
+            </DropdownItem>
+          ) : (
+            <>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    imageName: maskInfo?.imageName,
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Un-mask malware for this image tag
+              </DropdownItem>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    imageName: maskInfo?.imageName,
+                  })
+                }
+              >
+                Un-mask malware for this image(all tags)
+              </DropdownItem>
+            </>
+          )}
           <DropdownItem
-            onClick={() => onTableAction(ids, ActionEnumType.UNMASK, 'maskHostAndImages')}
+            onClick={() =>
+              onTableAction(ids, ActionEnumType.UNMASK, {
+                maskHostAndImages: true,
+              })
+            }
           >
             Un-mask malware across hosts and images
           </DropdownItem>
@@ -880,13 +979,21 @@ const BulkActions = ({
   ids: string[];
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
 
-  const {
-    data: { scanStatusResult },
-  } = useScanResults();
+  const { data } = useScanResults();
+  const { data: scanResultData, scanStatusResult } = data;
 
   const isHost = scanStatusResult?.node_type === 'host';
 
@@ -901,13 +1008,45 @@ const BulkActions = ({
         disabled={!ids.length}
         content={
           <>
-            <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.MASK, '')}>
-              {isHost
-                ? 'Mask malwares for this host'
-                : 'Mask malwares for this image(all tags)'}
-            </DropdownItem>
+            {isHost ? (
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    hostId: scanResultData?.hostId,
+                  })
+                }
+              >
+                Mask malwares for this host
+              </DropdownItem>
+            ) : (
+              <>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.MASK, {
+                      imageName: scanResultData?.dockerImageName,
+                      imageTag: scanResultData?.imageTag,
+                    })
+                  }
+                >
+                  Mask malwares for this image tag
+                </DropdownItem>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.MASK, {
+                      imageName: scanResultData?.dockerImageName,
+                    })
+                  }
+                >
+                  Mask malwares for this image(all tags)
+                </DropdownItem>
+              </>
+            )}
             <DropdownItem
-              onClick={() => onTableAction(ids, ActionEnumType.MASK, 'maskHostAndImages')}
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.MASK, {
+                  maskHostAndImages: true,
+                })
+              }
             >
               Mask malwares across hosts and images
             </DropdownItem>
@@ -931,14 +1070,44 @@ const BulkActions = ({
         disabled={!ids.length}
         content={
           <>
-            <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.UNMASK, '')}>
-              {isHost
-                ? 'Un-mask malwares for this host'
-                : 'Un-mask malwares for this image(all tags)'}
-            </DropdownItem>
+            {isHost ? (
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    hostId: scanResultData?.hostId,
+                  })
+                }
+              >
+                Un-mask malwares for this host
+              </DropdownItem>
+            ) : (
+              <>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.UNMASK, {
+                      imageName: scanResultData?.dockerImageName,
+                      imageTag: scanResultData?.imageTag,
+                    })
+                  }
+                >
+                  Un-mask malwares for this image tag
+                </DropdownItem>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.UNMASK, {
+                      imageName: scanResultData?.dockerImageName,
+                    })
+                  }
+                >
+                  Un-mask malwares for this image(all tags)
+                </DropdownItem>
+              </>
+            )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, 'maskHostAndImages')
+                onTableAction(ids, ActionEnumType.UNMASK, {
+                  maskHostAndImages: true,
+                })
               }
             >
               Un-mask malwares across hosts and images
@@ -1168,7 +1337,16 @@ const MalwareTable = ({
   rowSelectionState,
   setRowSelectionState,
 }: {
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
   rowSelectionState: RowSelectionState;
@@ -1176,10 +1354,11 @@ const MalwareTable = ({
 }) => {
   const [searchParams, setSearchParams] = useSearchParams();
   const { data } = useScanResults();
+  const { data: scanResultData, scanStatusResult } = data;
   const columnHelper = createColumnHelper<ModelMalware>();
   const [sort, setSort] = useSortingState();
 
-  const nodeType = data.scanStatusResult?.node_type ?? '';
+  const nodeType = scanStatusResult?.node_type ?? '';
 
   const columns = useMemo(() => {
     const columns = [
@@ -1198,6 +1377,11 @@ const MalwareTable = ({
             setShowDeleteDialog={setShowDeleteDialog}
             onTableAction={onTableAction}
             nodeType={nodeType}
+            maskInfo={{
+              imageName: scanResultData?.dockerImageName,
+              imageTag: data.data?.imageTag,
+              hostId: data.data?.hostId,
+            }}
             trigger={
               <button className="p-1">
                 <div className="h-[16px] w-[16px] dark:text-text-text-and-icon rotate-90">
@@ -1291,7 +1475,6 @@ const MalwareTable = ({
     return columns;
   }, [setSearchParams, nodeType]);
 
-  const { data: scanResultData, scanStatusResult } = data;
   return (
     <Table
       size="default"
@@ -1427,12 +1610,33 @@ const ScanResults = () => {
   const fetcher = useFetcher<ActionData>();
 
   const onTableAction = useCallback(
-    (ids: string[], actionType: string, maskHostAndImages?: string) => {
+    (
+      ids: string[],
+      actionType: string,
+      maskInfo?: {
+        hostId?: string;
+        imageName?: string;
+        imageTag?: string;
+        maskHostAndImages?: boolean;
+      },
+    ) => {
       const formData = new FormData();
       formData.append('actionType', actionType);
 
-      if (actionType === ActionEnumType.MASK || actionType === ActionEnumType.UNMASK) {
-        formData.append('maskHostAndImages', maskHostAndImages ?? '');
+      if (maskInfo?.maskHostAndImages) {
+        formData.append(
+          'maskHostAndImages',
+          maskInfo?.maskHostAndImages?.toString() ?? '',
+        );
+      }
+      if (maskInfo?.hostId) {
+        formData.append('hostId', maskInfo.hostId?.toString() ?? '');
+      }
+      if (maskInfo?.imageName) {
+        formData.append('imageName', maskInfo.imageName?.toString() ?? '');
+      }
+      if (maskInfo?.imageTag) {
+        formData.append('imageTag', maskInfo.imageTag?.toString() ?? '');
       }
 
       ids.forEach((item) => formData.append('nodeIds[]', item));
diff --git a/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx
index de4a0a58f5..008c8535cd 100644
--- a/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx
@@ -182,13 +182,31 @@ const action = async ({
     const apiFunctionApi = apiWrapper({
       fn: apiFunction,
     });
+    const maskInfo: {
+      image_name?: string;
+      image_tag?: string;
+      entity_id?: string;
+    } = {};
+    const hostId = formData.get('hostId');
+    const imageName = formData.get('imageName');
+    const imageTag = formData.get('imageTag');
+    if (hostId) {
+      maskInfo.entity_id = hostId.toString();
+    }
+    if (imageName) {
+      maskInfo.image_name = imageName.toString();
+    }
+    if (imageTag) {
+      maskInfo.image_tag = imageTag.toString();
+    }
+
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
-        mask_across_hosts_and_images: mask === 'maskHostAndImages',
-        mask_in_this_host_or_image_tags: mask !== 'maskHostAndImages',
+        mask_across_hosts_and_images: mask === 'true',
         result_ids: [...ids],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.SecretScan,
+        ...maskInfo,
       },
     });
     if (!result.ok) {
@@ -809,13 +827,30 @@ const ActionDropdown = ({
   setShowDeleteDialog,
   onTableAction,
   nodeType,
+  maskInfo,
 }: {
   ids: string[];
   trigger: React.ReactNode;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
   nodeType: string;
+  maskInfo:
+    | {
+        imageName?: string;
+        imageTag?: string;
+        hostId?: string;
+      }
+    | undefined;
 }) => {
   const isHost = nodeType === 'host';
   return (
@@ -824,24 +859,88 @@ const ActionDropdown = ({
       align={'start'}
       content={
         <>
-          <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.MASK, '')}>
-            {isHost
-              ? 'Mask secret for this host'
-              : 'Mask secret for this image(all tags)'}
-          </DropdownItem>
+          {isHost ? (
+            <DropdownItem
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.MASK, {
+                  hostId: maskInfo?.hostId,
+                })
+              }
+            >
+              Mask secret for this host
+            </DropdownItem>
+          ) : (
+            <>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    imageName: maskInfo?.imageName,
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Mask secret for this image tag
+              </DropdownItem>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    imageName: maskInfo?.imageName,
+                  })
+                }
+              >
+                Mask secret for this image(all tags)
+              </DropdownItem>
+            </>
+          )}
           <DropdownItem
-            onClick={() => onTableAction(ids, ActionEnumType.MASK, 'maskHostAndImages')}
+            onClick={() =>
+              onTableAction(ids, ActionEnumType.MASK, {
+                maskHostAndImages: true,
+              })
+            }
           >
             Mask secret across hosts and images
           </DropdownItem>
           <DropdownSeparator />
-          <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.UNMASK, '')}>
-            {isHost
-              ? 'Un-mask secret for this host'
-              : 'Un-mask secret for this image(all tags)'}
-          </DropdownItem>
+          {isHost ? (
+            <DropdownItem
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.UNMASK, {
+                  hostId: maskInfo?.hostId,
+                })
+              }
+            >
+              Un-mask secret for this host
+            </DropdownItem>
+          ) : (
+            <>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    imageName: maskInfo?.imageName,
+                    imageTag: maskInfo?.imageTag,
+                  })
+                }
+              >
+                Un-mask secret for this image tag
+              </DropdownItem>
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    imageName: maskInfo?.imageName,
+                  })
+                }
+              >
+                Un-mask secret for this image(all tags)
+              </DropdownItem>
+            </>
+          )}
           <DropdownItem
-            onClick={() => onTableAction(ids, ActionEnumType.UNMASK, 'maskHostAndImages')}
+            onClick={() =>
+              onTableAction(ids, ActionEnumType.UNMASK, {
+                maskHostAndImages: true,
+              })
+            }
           >
             Un-mask secret across hosts and images
           </DropdownItem>
@@ -880,13 +979,21 @@ const BulkActions = ({
   ids: string[];
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
 
-  const {
-    data: { scanStatusResult },
-  } = useScanResults();
+  const { data } = useScanResults();
+  const { data: scanResultData, scanStatusResult } = data;
 
   const isHost = scanStatusResult?.node_type === 'host';
 
@@ -901,13 +1008,45 @@ const BulkActions = ({
         disabled={!ids.length}
         content={
           <>
-            <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.MASK, '')}>
-              {isHost
-                ? 'Mask secrets for this host'
-                : 'Mask secrets for this image(all tags)'}
-            </DropdownItem>
+            {isHost ? (
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.MASK, {
+                    hostId: scanResultData?.hostId,
+                  })
+                }
+              >
+                Mask secrets for this host
+              </DropdownItem>
+            ) : (
+              <>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.MASK, {
+                      imageName: scanResultData?.dockerImageName,
+                      imageTag: scanResultData?.imageTag,
+                    })
+                  }
+                >
+                  Mask secrets for this image tag
+                </DropdownItem>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.MASK, {
+                      imageName: scanResultData?.dockerImageName,
+                    })
+                  }
+                >
+                  Mask secrets for this image(all tags)
+                </DropdownItem>
+              </>
+            )}
             <DropdownItem
-              onClick={() => onTableAction(ids, ActionEnumType.MASK, 'maskHostAndImages')}
+              onClick={() =>
+                onTableAction(ids, ActionEnumType.MASK, {
+                  maskHostAndImages: true,
+                })
+              }
             >
               Mask secrets across hosts and images
             </DropdownItem>
@@ -931,14 +1070,44 @@ const BulkActions = ({
         disabled={!ids.length}
         content={
           <>
-            <DropdownItem onClick={() => onTableAction(ids, ActionEnumType.UNMASK, '')}>
-              {isHost
-                ? 'Un-mask secrets for this host'
-                : 'Un-mask secrets for this image(all tags)'}
-            </DropdownItem>
+            {isHost ? (
+              <DropdownItem
+                onClick={() =>
+                  onTableAction(ids, ActionEnumType.UNMASK, {
+                    hostId: scanResultData?.hostId,
+                  })
+                }
+              >
+                Un-mask secrets for this host
+              </DropdownItem>
+            ) : (
+              <>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.UNMASK, {
+                      imageName: scanResultData?.dockerImageName,
+                      imageTag: scanResultData?.imageTag,
+                    })
+                  }
+                >
+                  Un-mask secrets for this image tag
+                </DropdownItem>
+                <DropdownItem
+                  onClick={() =>
+                    onTableAction(ids, ActionEnumType.UNMASK, {
+                      imageName: scanResultData?.dockerImageName,
+                    })
+                  }
+                >
+                  Un-mask secrets for this image(all tags)
+                </DropdownItem>
+              </>
+            )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, 'maskHostAndImages')
+                onTableAction(ids, ActionEnumType.UNMASK, {
+                  maskHostAndImages: true,
+                })
               }
             >
               Un-mask secrets across hosts and images
@@ -1168,7 +1337,16 @@ const SecretTable = ({
   rowSelectionState,
   setRowSelectionState,
 }: {
-  onTableAction: (ids: string[], actionType: string, maskHostAndImages?: string) => void;
+  onTableAction: (
+    ids: string[],
+    actionType: string,
+    maskInfo?: {
+      hostId?: string;
+      imageName?: string;
+      imageTag?: string;
+      maskHostAndImages?: boolean;
+    },
+  ) => void;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
   rowSelectionState: RowSelectionState;
@@ -1176,6 +1354,7 @@ const SecretTable = ({
 }) => {
   const [searchParams, setSearchParams] = useSearchParams();
   const { data } = useScanResults();
+  const { data: scanResultData, scanStatusResult } = data;
   const columnHelper = createColumnHelper<ModelSecret>();
   const [sort, setSort] = useSortingState();
 
@@ -1198,6 +1377,11 @@ const SecretTable = ({
             setShowDeleteDialog={setShowDeleteDialog}
             onTableAction={onTableAction}
             nodeType={nodeType}
+            maskInfo={{
+              imageName: scanResultData?.dockerImageName,
+              imageTag: scanResultData?.imageTag,
+              hostId: scanResultData?.hostId,
+            }}
             trigger={
               <button className="p-1">
                 <div className="h-[16px] w-[16px] dark:text-text-text-and-icon rotate-90">
@@ -1291,8 +1475,6 @@ const SecretTable = ({
     return columns;
   }, [setSearchParams, nodeType]);
 
-  const { data: scanResultData, scanStatusResult } = data;
-
   return (
     <Table
       size="default"
@@ -1430,12 +1612,35 @@ const ScanResults = () => {
   const fetcher = useFetcher<ActionData>();
 
   const onTableAction = useCallback(
-    (ids: string[], actionType: string, maskHostAndImages?: string) => {
+    (
+      ids: string[],
+      actionType: string,
+      maskInfo?: {
+        hostId?: string;
+        imageName?: string;
+        imageTag?: string;
+        maskHostAndImages?: boolean;
+      },
+    ) => {
       const formData = new FormData();
       formData.append('actionType', actionType);
 
       if (actionType === ActionEnumType.MASK || actionType === ActionEnumType.UNMASK) {
-        formData.append('maskHostAndImages', maskHostAndImages ?? '');
+        if (maskInfo?.maskHostAndImages) {
+          formData.append(
+            'maskHostAndImages',
+            maskInfo?.maskHostAndImages?.toString() ?? '',
+          );
+        }
+        if (maskInfo?.hostId) {
+          formData.append('hostId', maskInfo.hostId?.toString() ?? '');
+        }
+        if (maskInfo?.imageName) {
+          formData.append('imageName', maskInfo.imageName?.toString() ?? '');
+        }
+        if (maskInfo?.imageTag) {
+          formData.append('imageTag', maskInfo.imageTag?.toString() ?? '');
+        }
       }
 
       ids.forEach((item) => formData.append('nodeIds[]', item));
diff --git a/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
index d28c2821c2..43a79e0d84 100644
--- a/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
@@ -201,6 +201,7 @@ const action = async ({
     if (imageTag) {
       maskInfo.image_tag = imageTag.toString();
     }
+
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
         mask_across_hosts_and_images: maskHostAndImages === 'true',
@@ -892,7 +893,7 @@ const ActionDropdown = ({
               <DropdownItem
                 onClick={() =>
                   onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageTag: maskInfo?.imageTag,
+                    imageName: maskInfo?.imageName,
                   })
                 }
               >
@@ -941,7 +942,6 @@ const BulkActions = ({
   setIdsToDelete,
   setShowDeleteDialog,
   onTableAction,
-  maskInfo,
 }: {
   ids: string[];
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
@@ -956,17 +956,10 @@ const BulkActions = ({
       maskHostAndImages?: boolean;
     },
   ) => void;
-  maskInfo?: {
-    hostId?: string;
-    imageName?: string;
-    imageTag?: string;
-    maskHostAndImages?: boolean;
-  };
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
-  const {
-    data: { scanStatusResult },
-  } = useScanResults();
+  const { data } = useScanResults();
+  const { data: scanResultData, scanStatusResult } = data;
 
   const isHost = scanStatusResult?.node_type === 'host';
 
@@ -985,7 +978,7 @@ const BulkActions = ({
               <DropdownItem
                 onClick={() =>
                   onTableAction(ids, ActionEnumType.MASK, {
-                    hostId: maskInfo?.hostId,
+                    hostId: scanResultData?.hostId,
                   })
                 }
               >
@@ -996,8 +989,8 @@ const BulkActions = ({
                 <DropdownItem
                   onClick={() =>
                     onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: maskInfo?.imageName,
-                      imageTag: maskInfo?.imageTag,
+                      imageName: scanResultData?.dockerImageName,
+                      imageTag: scanResultData?.imageTag,
                     })
                   }
                 >
@@ -1006,7 +999,7 @@ const BulkActions = ({
                 <DropdownItem
                   onClick={() =>
                     onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: maskInfo?.imageName,
+                      imageName: scanResultData?.dockerImageName,
                     })
                   }
                 >
@@ -1047,7 +1040,7 @@ const BulkActions = ({
               <DropdownItem
                 onClick={() =>
                   onTableAction(ids, ActionEnumType.UNMASK, {
-                    hostId: maskInfo?.hostId,
+                    hostId: scanResultData?.hostId,
                   })
                 }
               >
@@ -1058,8 +1051,8 @@ const BulkActions = ({
                 <DropdownItem
                   onClick={() =>
                     onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: maskInfo?.imageName,
-                      imageTag: maskInfo?.imageTag,
+                      imageName: scanResultData?.dockerImageName,
+                      imageTag: scanResultData?.imageTag,
                     })
                   }
                 >
@@ -1068,7 +1061,7 @@ const BulkActions = ({
                 <DropdownItem
                   onClick={() =>
                     onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageTag: maskInfo?.imageTag,
+                      imageName: scanResultData?.dockerImageName,
                     })
                   }
                 >
@@ -1650,6 +1643,7 @@ const CVETable = ({
 }) => {
   const [searchParams, setSearchParams] = useSearchParams();
   const { data } = useScanResults();
+  const { data: scanResultData, scanStatusResult } = data;
   const columnHelper = createColumnHelper<ModelVulnerability>();
   const [sort, setSort] = useSortingState();
 
@@ -1673,9 +1667,9 @@ const CVETable = ({
             onTableAction={onTableAction}
             nodeType={nodeType}
             maskInfo={{
-              imageName: data.data?.dockerImageName,
-              imageTag: data.data?.imageTag,
-              hostId: data.data?.hostId,
+              imageName: scanResultData?.dockerImageName,
+              imageTag: scanResultData?.imageTag,
+              hostId: scanResultData?.hostId,
             }}
             trigger={
               <button className="p-1">
@@ -1774,8 +1768,6 @@ const CVETable = ({
     return columns;
   }, [setSearchParams, nodeType]);
 
-  const { data: scanResultData, scanStatusResult } = data;
-
   return (
     <Table
       size="default"
diff --git a/deepfence_frontend/apps/dashboard/src/queries/malware.tsx b/deepfence_frontend/apps/dashboard/src/queries/malware.tsx
index f37e7063ad..f0c2654064 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/malware.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/malware.tsx
@@ -388,6 +388,8 @@ export const malwareQueries = createQueryKeys('malware', {
             },
             tableData: resultMalwareScanResponse.value.malwares ?? [],
             dockerImageName: resultMalwareScanResponse.value.docker_image_name,
+            imageTag: resultMalwareScanResponse.value.docker_image_name,
+            hostId: resultMalwareScanResponse.value.node_id,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,
diff --git a/deepfence_frontend/apps/dashboard/src/queries/secret.tsx b/deepfence_frontend/apps/dashboard/src/queries/secret.tsx
index 41b8b6f273..4b797c9aa6 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/secret.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/secret.tsx
@@ -381,6 +381,8 @@ export const secretQueries = createQueryKeys('secret', {
             },
             tableData: resultSecretScanResponse.value.secrets ?? [],
             dockerImageName: resultSecretScanResponse.value.docker_image_name,
+            imageTag: resultSecretScanResponse.value.docker_image_name,
+            hostId: resultSecretScanResponse.value.node_id,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,
diff --git a/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx b/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
index a27b5b2ab3..4d2a128388 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
@@ -439,7 +439,7 @@ export const vulnerabilityQueries = createQueryKeys('vulnerability', {
             tableData: resultVulnerabilityScanResponse.value.vulnerabilities ?? [],
             dockerImageName: resultVulnerabilityScanResponse.value.docker_image_name,
             imageTag: resultVulnerabilityScanResponse.value.docker_image_name,
-            hostId: resultVulnerabilityScanResponse.value.node_name,
+            hostId: resultVulnerabilityScanResponse.value.node_id,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,

From 1104fb6c4a78701f9005647453dc38ff4ceae8b9 Mon Sep 17 00:00:00 2001
From: milan-deepfence <rkmilansingh@gmail.com>
Date: Fri, 27 Oct 2023 13:38:24 +0530
Subject: [PATCH 3/4] update masking/unmasking with enum type changes

---
 .../apps/dashboard/api-spec.json              |  15 +-
 .../models/ModelScanResultsMaskRequest.ts     |  42 +--
 .../malwares/pages/MalwareScanResults.tsx     | 331 ++++++++---------
 .../secrets/pages/SecretScanResults.tsx       | 338 ++++++++----------
 .../pages/VulnerabilityScanResults.tsx        | 334 +++++++++--------
 .../apps/dashboard/src/queries/malware.tsx    |   2 -
 .../apps/dashboard/src/queries/secret.tsx     |   2 -
 .../dashboard/src/queries/vulnerability.tsx   |   2 -
 8 files changed, 502 insertions(+), 564 deletions(-)

diff --git a/deepfence_frontend/apps/dashboard/api-spec.json b/deepfence_frontend/apps/dashboard/api-spec.json
index 3bdd3be856..58d4e9fc6f 100644
--- a/deepfence_frontend/apps/dashboard/api-spec.json
+++ b/deepfence_frontend/apps/dashboard/api-spec.json
@@ -12784,13 +12784,18 @@
         }
       },
       "ModelScanResultsMaskRequest": {
-        "required": ["scan_id", "result_ids", "scan_type"],
+        "required": ["scan_id", "result_ids", "scan_type", "mask_action"],
         "type": "object",
         "properties": {
-          "entity_id": { "type": "string" },
-          "image_name": { "type": "string" },
-          "image_tag": { "type": "string" },
-          "mask_across_hosts_and_images": { "type": "boolean" },
+          "mask_action": {
+            "enum": [
+              "mask_global",
+              "mask_all_image_tag",
+              "mask_entity",
+              "mask_image_tag"
+            ],
+            "type": "string"
+          },
           "result_ids": {
             "type": "array",
             "items": { "type": "string" },
diff --git a/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts b/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts
index e286ddc913..4dd50e8e26 100644
--- a/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts
+++ b/deepfence_frontend/apps/dashboard/src/api/generated/models/ModelScanResultsMaskRequest.ts
@@ -24,25 +24,7 @@ export interface ModelScanResultsMaskRequest {
      * @type {string}
      * @memberof ModelScanResultsMaskRequest
      */
-    entity_id?: string;
-    /**
-     * 
-     * @type {string}
-     * @memberof ModelScanResultsMaskRequest
-     */
-    image_name?: string;
-    /**
-     * 
-     * @type {string}
-     * @memberof ModelScanResultsMaskRequest
-     */
-    image_tag?: string;
-    /**
-     * 
-     * @type {boolean}
-     * @memberof ModelScanResultsMaskRequest
-     */
-    mask_across_hosts_and_images?: boolean;
+    mask_action: ModelScanResultsMaskRequestMaskActionEnum;
     /**
      * 
      * @type {Array<string>}
@@ -64,6 +46,17 @@ export interface ModelScanResultsMaskRequest {
 }
 
 
+/**
+ * @export
+ */
+export const ModelScanResultsMaskRequestMaskActionEnum = {
+    Global: 'mask_global',
+    AllImageTag: 'mask_all_image_tag',
+    Entity: 'mask_entity',
+    ImageTag: 'mask_image_tag'
+} as const;
+export type ModelScanResultsMaskRequestMaskActionEnum = typeof ModelScanResultsMaskRequestMaskActionEnum[keyof typeof ModelScanResultsMaskRequestMaskActionEnum];
+
 /**
  * @export
  */
@@ -82,6 +75,7 @@ export type ModelScanResultsMaskRequestScanTypeEnum = typeof ModelScanResultsMas
  */
 export function instanceOfModelScanResultsMaskRequest(value: object): boolean {
     let isInstance = true;
+    isInstance = isInstance && "mask_action" in value;
     isInstance = isInstance && "result_ids" in value;
     isInstance = isInstance && "scan_id" in value;
     isInstance = isInstance && "scan_type" in value;
@@ -99,10 +93,7 @@ export function ModelScanResultsMaskRequestFromJSONTyped(json: any, ignoreDiscri
     }
     return {
         
-        'entity_id': !exists(json, 'entity_id') ? undefined : json['entity_id'],
-        'image_name': !exists(json, 'image_name') ? undefined : json['image_name'],
-        'image_tag': !exists(json, 'image_tag') ? undefined : json['image_tag'],
-        'mask_across_hosts_and_images': !exists(json, 'mask_across_hosts_and_images') ? undefined : json['mask_across_hosts_and_images'],
+        'mask_action': json['mask_action'],
         'result_ids': json['result_ids'],
         'scan_id': json['scan_id'],
         'scan_type': json['scan_type'],
@@ -118,10 +109,7 @@ export function ModelScanResultsMaskRequestToJSON(value?: ModelScanResultsMaskRe
     }
     return {
         
-        'entity_id': value.entity_id,
-        'image_name': value.image_name,
-        'image_tag': value.image_tag,
-        'mask_across_hosts_and_images': value.mask_across_hosts_and_images,
+        'mask_action': value.mask_action,
         'result_ids': value.result_ids,
         'scan_id': value.scan_id,
         'scan_type': value.scan_type,
diff --git a/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx
index dc1c6f0884..3808286ecf 100644
--- a/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/malwares/pages/MalwareScanResults.tsx
@@ -38,6 +38,7 @@ import { getScanResultsApiClient } from '@/api/api';
 import {
   ModelMalware,
   ModelScanInfo,
+  ModelScanResultsMaskRequestMaskActionEnum,
   UtilsReportFiltersNodeTypeEnum,
   UtilsReportFiltersScanTypeEnum,
 } from '@/api/generated';
@@ -118,7 +119,7 @@ const action = async ({
   const ids = (formData.getAll('nodeIds[]') ?? []) as string[];
   const actionType = formData.get('actionType');
   const _scanId = scanId;
-  const mask = formData.get('maskHostAndImages');
+  const maskAction = formData.get('maskAction');
   if (!_scanId) {
     throw new Error('Scan ID is required');
   }
@@ -181,31 +182,13 @@ const action = async ({
     const apiFunctionApi = apiWrapper({
       fn: apiFunction,
     });
-    const maskInfo: {
-      image_name?: string;
-      image_tag?: string;
-      entity_id?: string;
-    } = {};
-    const hostId = formData.get('hostId');
-    const imageName = formData.get('imageName');
-    const imageTag = formData.get('imageTag');
-    if (hostId) {
-      maskInfo.entity_id = hostId.toString();
-    }
-    if (imageName) {
-      maskInfo.image_name = imageName.toString();
-    }
-    if (imageTag) {
-      maskInfo.image_tag = imageTag.toString();
-    }
 
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
-        mask_across_hosts_and_images: mask === 'true',
+        mask_action: maskAction as ModelScanResultsMaskRequestMaskActionEnum,
         result_ids: [...ids],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.MalwareScan,
-        ...maskInfo,
       },
     });
     if (!result.ok) {
@@ -827,7 +810,7 @@ const ActionDropdown = ({
   setShowDeleteDialog,
   onTableAction,
   nodeType,
-  maskInfo,
+  isDockerImageNameEmpty,
 }: {
   ids: string[];
   trigger: React.ReactNode;
@@ -836,21 +819,10 @@ const ActionDropdown = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
   nodeType: string;
-  maskInfo:
-    | {
-        imageName?: string;
-        imageTag?: string;
-        hostId?: string;
-      }
-    | undefined;
+  isDockerImageNameEmpty: boolean;
 }) => {
   const isHost = nodeType === 'host';
   return (
@@ -862,41 +834,52 @@ const ActionDropdown = ({
           {isHost ? (
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.MASK, {
-                  hostId: maskInfo?.hostId,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.MASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                )
               }
             >
               Mask malware for this host
             </DropdownItem>
           ) : (
             <>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    imageName: maskInfo?.imageName,
-                    imageTag: maskInfo?.imageTag,
-                  })
-                }
-              >
-                Mask malware for this image tag
-              </DropdownItem>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    imageName: maskInfo?.imageName,
-                  })
-                }
-              >
-                Mask malware for this image(all tags)
-              </DropdownItem>
+              {!isDockerImageNameEmpty && (
+                <>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.MASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                      )
+                    }
+                  >
+                    Mask malware for this image tag
+                  </DropdownItem>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.MASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                      )
+                    }
+                  >
+                    Mask malware for this image(all tags)
+                  </DropdownItem>
+                </>
+              )}
             </>
           )}
           <DropdownItem
             onClick={() =>
-              onTableAction(ids, ActionEnumType.MASK, {
-                maskHostAndImages: true,
-              })
+              onTableAction(
+                ids,
+                ActionEnumType.MASK,
+                ModelScanResultsMaskRequestMaskActionEnum.Global,
+              )
             }
           >
             Mask malware across hosts and images
@@ -905,41 +888,52 @@ const ActionDropdown = ({
           {isHost ? (
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, {
-                  hostId: maskInfo?.hostId,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.UNMASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                )
               }
             >
               Un-mask malware for this host
             </DropdownItem>
           ) : (
             <>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageName: maskInfo?.imageName,
-                    imageTag: maskInfo?.imageTag,
-                  })
-                }
-              >
-                Un-mask malware for this image tag
-              </DropdownItem>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageName: maskInfo?.imageName,
-                  })
-                }
-              >
-                Un-mask malware for this image(all tags)
-              </DropdownItem>
+              {!isDockerImageNameEmpty && (
+                <>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.UNMASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                      )
+                    }
+                  >
+                    Un-mask malware for this image tag
+                  </DropdownItem>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.UNMASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                      )
+                    }
+                  >
+                    Un-mask malware for this image(all tags)
+                  </DropdownItem>
+                </>
+              )}
             </>
           )}
           <DropdownItem
             onClick={() =>
-              onTableAction(ids, ActionEnumType.UNMASK, {
-                maskHostAndImages: true,
-              })
+              onTableAction(
+                ids,
+                ActionEnumType.UNMASK,
+                ModelScanResultsMaskRequestMaskActionEnum.Global,
+              )
             }
           >
             Un-mask malware across hosts and images
@@ -982,18 +976,14 @@ const BulkActions = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
 
   const { data } = useScanResults();
-  const { data: scanResultData, scanStatusResult } = data;
+  const { scanStatusResult, data: scanResults } = data;
+  const isDockerImageNameEmpty = scanResults?.dockerImageName?.trim()?.length === 0;
 
   const isHost = scanStatusResult?.node_type === 'host';
 
@@ -1011,41 +1001,52 @@ const BulkActions = ({
             {isHost ? (
               <DropdownItem
                 onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    hostId: scanResultData?.hostId,
-                  })
+                  onTableAction(
+                    ids,
+                    ActionEnumType.MASK,
+                    ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                  )
                 }
               >
                 Mask malwares for this host
               </DropdownItem>
             ) : (
               <>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: scanResultData?.dockerImageName,
-                      imageTag: scanResultData?.imageTag,
-                    })
-                  }
-                >
-                  Mask malwares for this image tag
-                </DropdownItem>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: scanResultData?.dockerImageName,
-                    })
-                  }
-                >
-                  Mask malwares for this image(all tags)
-                </DropdownItem>
+                {!isDockerImageNameEmpty && (
+                  <>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.MASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                        )
+                      }
+                    >
+                      Mask malwares for this image tag
+                    </DropdownItem>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.MASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                        )
+                      }
+                    >
+                      Mask malwares for this image(all tags)
+                    </DropdownItem>
+                  </>
+                )}
               </>
             )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.MASK, {
-                  maskHostAndImages: true,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.MASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Global,
+                )
               }
             >
               Mask malwares across hosts and images
@@ -1073,41 +1074,52 @@ const BulkActions = ({
             {isHost ? (
               <DropdownItem
                 onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    hostId: scanResultData?.hostId,
-                  })
+                  onTableAction(
+                    ids,
+                    ActionEnumType.UNMASK,
+                    ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                  )
                 }
               >
                 Un-mask malwares for this host
               </DropdownItem>
             ) : (
               <>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: scanResultData?.dockerImageName,
-                      imageTag: scanResultData?.imageTag,
-                    })
-                  }
-                >
-                  Un-mask malwares for this image tag
-                </DropdownItem>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: scanResultData?.dockerImageName,
-                    })
-                  }
-                >
-                  Un-mask malwares for this image(all tags)
-                </DropdownItem>
+                {!isDockerImageNameEmpty && (
+                  <>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.UNMASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                        )
+                      }
+                    >
+                      Un-mask malwares for this image tag
+                    </DropdownItem>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.UNMASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                        )
+                      }
+                    >
+                      Un-mask malwares for this image(all tags)
+                    </DropdownItem>
+                  </>
+                )}
               </>
             )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, {
-                  maskHostAndImages: true,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.UNMASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Global,
+                )
               }
             >
               Un-mask malwares across hosts and images
@@ -1340,12 +1352,7 @@ const MalwareTable = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
@@ -1359,6 +1366,7 @@ const MalwareTable = ({
   const [sort, setSort] = useSortingState();
 
   const nodeType = scanStatusResult?.node_type ?? '';
+  const isDockerImageNameEmpty = scanResultData?.dockerImageName?.trim()?.length === 0;
 
   const columns = useMemo(() => {
     const columns = [
@@ -1377,11 +1385,7 @@ const MalwareTable = ({
             setShowDeleteDialog={setShowDeleteDialog}
             onTableAction={onTableAction}
             nodeType={nodeType}
-            maskInfo={{
-              imageName: scanResultData?.dockerImageName,
-              imageTag: data.data?.imageTag,
-              hostId: data.data?.hostId,
-            }}
+            isDockerImageNameEmpty={isDockerImageNameEmpty}
             trigger={
               <button className="p-1">
                 <div className="h-[16px] w-[16px] dark:text-text-text-and-icon rotate-90">
@@ -1613,31 +1617,12 @@ const ScanResults = () => {
     (
       ids: string[],
       actionType: string,
-      maskInfo?: {
-        hostId?: string;
-        imageName?: string;
-        imageTag?: string;
-        maskHostAndImages?: boolean;
-      },
+      maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
     ) => {
       const formData = new FormData();
       formData.append('actionType', actionType);
 
-      if (maskInfo?.maskHostAndImages) {
-        formData.append(
-          'maskHostAndImages',
-          maskInfo?.maskHostAndImages?.toString() ?? '',
-        );
-      }
-      if (maskInfo?.hostId) {
-        formData.append('hostId', maskInfo.hostId?.toString() ?? '');
-      }
-      if (maskInfo?.imageName) {
-        formData.append('imageName', maskInfo.imageName?.toString() ?? '');
-      }
-      if (maskInfo?.imageTag) {
-        formData.append('imageTag', maskInfo.imageTag?.toString() ?? '');
-      }
+      formData.append('maskAction', maskAction?.toString() ?? '');
 
       ids.forEach((item) => formData.append('nodeIds[]', item));
       fetcher.submit(formData, {
diff --git a/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx
index 008c8535cd..8d033c0320 100644
--- a/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/secrets/pages/SecretScanResults.tsx
@@ -37,6 +37,7 @@ import {
 import { getScanResultsApiClient } from '@/api/api';
 import {
   ModelScanInfo,
+  ModelScanResultsMaskRequestMaskActionEnum,
   UtilsReportFiltersNodeTypeEnum,
   UtilsReportFiltersScanTypeEnum,
 } from '@/api/generated';
@@ -118,7 +119,7 @@ const action = async ({
   const ids = (formData.getAll('nodeIds[]') ?? []) as string[];
   const actionType = formData.get('actionType');
   const _scanId = scanId;
-  const mask = formData.get('maskHostAndImages');
+  const maskAction = formData.get('maskAction');
   if (!_scanId) {
     throw new Error('Scan ID is required');
   }
@@ -182,31 +183,12 @@ const action = async ({
     const apiFunctionApi = apiWrapper({
       fn: apiFunction,
     });
-    const maskInfo: {
-      image_name?: string;
-      image_tag?: string;
-      entity_id?: string;
-    } = {};
-    const hostId = formData.get('hostId');
-    const imageName = formData.get('imageName');
-    const imageTag = formData.get('imageTag');
-    if (hostId) {
-      maskInfo.entity_id = hostId.toString();
-    }
-    if (imageName) {
-      maskInfo.image_name = imageName.toString();
-    }
-    if (imageTag) {
-      maskInfo.image_tag = imageTag.toString();
-    }
-
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
-        mask_across_hosts_and_images: mask === 'true',
+        mask_action: maskAction as ModelScanResultsMaskRequestMaskActionEnum,
         result_ids: [...ids],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.SecretScan,
-        ...maskInfo,
       },
     });
     if (!result.ok) {
@@ -827,7 +809,7 @@ const ActionDropdown = ({
   setShowDeleteDialog,
   onTableAction,
   nodeType,
-  maskInfo,
+  isDockerImageNameEmpty,
 }: {
   ids: string[];
   trigger: React.ReactNode;
@@ -836,21 +818,10 @@ const ActionDropdown = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
   nodeType: string;
-  maskInfo:
-    | {
-        imageName?: string;
-        imageTag?: string;
-        hostId?: string;
-      }
-    | undefined;
+  isDockerImageNameEmpty: boolean;
 }) => {
   const isHost = nodeType === 'host';
   return (
@@ -862,41 +833,52 @@ const ActionDropdown = ({
           {isHost ? (
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.MASK, {
-                  hostId: maskInfo?.hostId,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.MASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                )
               }
             >
               Mask secret for this host
             </DropdownItem>
           ) : (
             <>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    imageName: maskInfo?.imageName,
-                    imageTag: maskInfo?.imageTag,
-                  })
-                }
-              >
-                Mask secret for this image tag
-              </DropdownItem>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    imageName: maskInfo?.imageName,
-                  })
-                }
-              >
-                Mask secret for this image(all tags)
-              </DropdownItem>
+              {!isDockerImageNameEmpty && (
+                <>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.MASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                      )
+                    }
+                  >
+                    Mask secret for this image tag
+                  </DropdownItem>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.MASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                      )
+                    }
+                  >
+                    Mask secret for this image(all tags)
+                  </DropdownItem>
+                </>
+              )}
             </>
           )}
           <DropdownItem
             onClick={() =>
-              onTableAction(ids, ActionEnumType.MASK, {
-                maskHostAndImages: true,
-              })
+              onTableAction(
+                ids,
+                ActionEnumType.MASK,
+                ModelScanResultsMaskRequestMaskActionEnum.Global,
+              )
             }
           >
             Mask secret across hosts and images
@@ -905,41 +887,52 @@ const ActionDropdown = ({
           {isHost ? (
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, {
-                  hostId: maskInfo?.hostId,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.UNMASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                )
               }
             >
               Un-mask secret for this host
             </DropdownItem>
           ) : (
             <>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageName: maskInfo?.imageName,
-                    imageTag: maskInfo?.imageTag,
-                  })
-                }
-              >
-                Un-mask secret for this image tag
-              </DropdownItem>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageName: maskInfo?.imageName,
-                  })
-                }
-              >
-                Un-mask secret for this image(all tags)
-              </DropdownItem>
+              {!isDockerImageNameEmpty && (
+                <>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.UNMASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                      )
+                    }
+                  >
+                    Un-mask secret for this image tag
+                  </DropdownItem>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.UNMASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                      )
+                    }
+                  >
+                    Un-mask secret for this image(all tags)
+                  </DropdownItem>
+                </>
+              )}
             </>
           )}
           <DropdownItem
             onClick={() =>
-              onTableAction(ids, ActionEnumType.UNMASK, {
-                maskHostAndImages: true,
-              })
+              onTableAction(
+                ids,
+                ActionEnumType.UNMASK,
+                ModelScanResultsMaskRequestMaskActionEnum.Global,
+              )
             }
           >
             Un-mask secret across hosts and images
@@ -982,20 +975,16 @@ const BulkActions = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
 
   const { data } = useScanResults();
-  const { data: scanResultData, scanStatusResult } = data;
+  const { scanStatusResult, data: scanResults } = data;
 
   const isHost = scanStatusResult?.node_type === 'host';
+  const isDockerImageNameEmpty = scanResults?.dockerImageName?.trim()?.length === 0;
 
   return (
     <>
@@ -1011,41 +1000,52 @@ const BulkActions = ({
             {isHost ? (
               <DropdownItem
                 onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    hostId: scanResultData?.hostId,
-                  })
+                  onTableAction(
+                    ids,
+                    ActionEnumType.MASK,
+                    ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                  )
                 }
               >
                 Mask secrets for this host
               </DropdownItem>
             ) : (
               <>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: scanResultData?.dockerImageName,
-                      imageTag: scanResultData?.imageTag,
-                    })
-                  }
-                >
-                  Mask secrets for this image tag
-                </DropdownItem>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: scanResultData?.dockerImageName,
-                    })
-                  }
-                >
-                  Mask secrets for this image(all tags)
-                </DropdownItem>
+                {!isDockerImageNameEmpty && (
+                  <>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.MASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                        )
+                      }
+                    >
+                      Mask secrets for this image tag
+                    </DropdownItem>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.MASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                        )
+                      }
+                    >
+                      Mask secrets for this image(all tags)
+                    </DropdownItem>
+                  </>
+                )}
               </>
             )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.MASK, {
-                  maskHostAndImages: true,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.MASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Global,
+                )
               }
             >
               Mask secrets across hosts and images
@@ -1073,41 +1073,52 @@ const BulkActions = ({
             {isHost ? (
               <DropdownItem
                 onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    hostId: scanResultData?.hostId,
-                  })
+                  onTableAction(
+                    ids,
+                    ActionEnumType.UNMASK,
+                    ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                  )
                 }
               >
                 Un-mask secrets for this host
               </DropdownItem>
             ) : (
               <>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: scanResultData?.dockerImageName,
-                      imageTag: scanResultData?.imageTag,
-                    })
-                  }
-                >
-                  Un-mask secrets for this image tag
-                </DropdownItem>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: scanResultData?.dockerImageName,
-                    })
-                  }
-                >
-                  Un-mask secrets for this image(all tags)
-                </DropdownItem>
+                {!isDockerImageNameEmpty && (
+                  <>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.UNMASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                        )
+                      }
+                    >
+                      Un-mask secrets for this image tag
+                    </DropdownItem>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.UNMASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                        )
+                      }
+                    >
+                      Un-mask secrets for this image(all tags)
+                    </DropdownItem>
+                  </>
+                )}
               </>
             )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, {
-                  maskHostAndImages: true,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.UNMASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Global,
+                )
               }
             >
               Un-mask secrets across hosts and images
@@ -1337,16 +1348,7 @@ const SecretTable = ({
   rowSelectionState,
   setRowSelectionState,
 }: {
-  onTableAction: (
-    ids: string[],
-    actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
-  ) => void;
+  onTableAction: (ids: string[], actionType: string) => void;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
   rowSelectionState: RowSelectionState;
@@ -1358,7 +1360,8 @@ const SecretTable = ({
   const columnHelper = createColumnHelper<ModelSecret>();
   const [sort, setSort] = useSortingState();
 
-  const nodeType = data.scanStatusResult?.node_type ?? '';
+  const nodeType = scanStatusResult?.node_type ?? '';
+  const isDockerImageNameEmpty = scanResultData?.dockerImageName?.trim()?.length === 0;
 
   const columns = useMemo(() => {
     const columns = [
@@ -1377,11 +1380,7 @@ const SecretTable = ({
             setShowDeleteDialog={setShowDeleteDialog}
             onTableAction={onTableAction}
             nodeType={nodeType}
-            maskInfo={{
-              imageName: scanResultData?.dockerImageName,
-              imageTag: scanResultData?.imageTag,
-              hostId: scanResultData?.hostId,
-            }}
+            isDockerImageNameEmpty={isDockerImageNameEmpty}
             trigger={
               <button className="p-1">
                 <div className="h-[16px] w-[16px] dark:text-text-text-and-icon rotate-90">
@@ -1615,32 +1614,13 @@ const ScanResults = () => {
     (
       ids: string[],
       actionType: string,
-      maskInfo?: {
-        hostId?: string;
-        imageName?: string;
-        imageTag?: string;
-        maskHostAndImages?: boolean;
-      },
+      maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
     ) => {
       const formData = new FormData();
       formData.append('actionType', actionType);
 
       if (actionType === ActionEnumType.MASK || actionType === ActionEnumType.UNMASK) {
-        if (maskInfo?.maskHostAndImages) {
-          formData.append(
-            'maskHostAndImages',
-            maskInfo?.maskHostAndImages?.toString() ?? '',
-          );
-        }
-        if (maskInfo?.hostId) {
-          formData.append('hostId', maskInfo.hostId?.toString() ?? '');
-        }
-        if (maskInfo?.imageName) {
-          formData.append('imageName', maskInfo.imageName?.toString() ?? '');
-        }
-        if (maskInfo?.imageTag) {
-          formData.append('imageTag', maskInfo.imageTag?.toString() ?? '');
-        }
+        formData.append('maskAction', maskAction?.toString() ?? '');
       }
 
       ids.forEach((item) => formData.append('nodeIds[]', item));
diff --git a/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
index 43a79e0d84..e9fd6cd10b 100644
--- a/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/vulnerabilities/pages/VulnerabilityScanResults.tsx
@@ -37,6 +37,7 @@ import {
 import { getScanResultsApiClient } from '@/api/api';
 import {
   ModelScanInfo,
+  ModelScanResultsMaskRequestMaskActionEnum,
   ModelVulnerability,
   UtilsReportFiltersNodeTypeEnum,
   UtilsReportFiltersScanTypeEnum,
@@ -121,7 +122,7 @@ const action = async ({
   const nodeIds = (formData.getAll('nodeIds[]') ?? []) as string[];
   const actionType = formData.get('actionType');
   const _scanId = scanId;
-  const maskHostAndImages = formData.get('maskHostAndImages');
+  const maskAction = formData.get('maskAction');
   if (!_scanId) {
     throw new Error('Scan ID is required');
   }
@@ -184,31 +185,13 @@ const action = async ({
     const apiFunctionApi = apiWrapper({
       fn: apiFunction,
     });
-    const maskInfo: {
-      image_name?: string;
-      image_tag?: string;
-      entity_id?: string;
-    } = {};
-    const hostId = formData.get('hostId');
-    const imageName = formData.get('imageName');
-    const imageTag = formData.get('imageTag');
-    if (hostId) {
-      maskInfo.entity_id = hostId.toString();
-    }
-    if (imageName) {
-      maskInfo.image_name = imageName.toString();
-    }
-    if (imageTag) {
-      maskInfo.image_tag = imageTag.toString();
-    }
 
     const result = await apiFunctionApi({
       modelScanResultsMaskRequest: {
-        mask_across_hosts_and_images: maskHostAndImages === 'true',
+        mask_action: maskAction as ModelScanResultsMaskRequestMaskActionEnum,
         result_ids: [...nodeIds],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.VulnerabilityScan,
-        ...maskInfo,
       },
     });
     if (!result.ok) {
@@ -792,7 +775,7 @@ const ActionDropdown = ({
   setShowDeleteDialog,
   onTableAction,
   nodeType,
-  maskInfo,
+  isDockerImageNameEmpty,
 }: {
   ids: string[];
   trigger: React.ReactNode;
@@ -801,23 +784,13 @@ const ActionDropdown = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
   nodeType: string;
-  maskInfo:
-    | {
-        imageName?: string;
-        imageTag?: string;
-        hostId?: string;
-      }
-    | undefined;
+  isDockerImageNameEmpty: boolean;
 }) => {
   const isHost = nodeType === 'host';
+
   return (
     <Dropdown
       triggerAsChild={true}
@@ -827,41 +800,52 @@ const ActionDropdown = ({
           {isHost ? (
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.MASK, {
-                  hostId: maskInfo?.hostId,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.MASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                )
               }
             >
               Mask vulnerability for this host
             </DropdownItem>
           ) : (
             <>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    imageName: maskInfo?.imageName,
-                    imageTag: maskInfo?.imageTag,
-                  })
-                }
-              >
-                Mask vulnerability for this image tag
-              </DropdownItem>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    imageName: maskInfo?.imageName,
-                  })
-                }
-              >
-                Mask vulnerability for this image(all tags)
-              </DropdownItem>
+              {!isDockerImageNameEmpty && (
+                <>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.MASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                      )
+                    }
+                  >
+                    Mask vulnerability for this image tag
+                  </DropdownItem>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.MASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                      )
+                    }
+                  >
+                    Mask vulnerability for this image(all tags)
+                  </DropdownItem>
+                </>
+              )}
             </>
           )}
           <DropdownItem
             onClick={() =>
-              onTableAction(ids, ActionEnumType.MASK, {
-                maskHostAndImages: true,
-              })
+              onTableAction(
+                ids,
+                ActionEnumType.MASK,
+                ModelScanResultsMaskRequestMaskActionEnum.Global,
+              )
             }
           >
             Mask vulnerability across hosts and images
@@ -871,41 +855,52 @@ const ActionDropdown = ({
           {isHost ? (
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, {
-                  hostId: maskInfo?.hostId,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.UNMASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                )
               }
             >
               Un-mask vulnerability for this host
             </DropdownItem>
           ) : (
             <>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageName: maskInfo?.imageName,
-                    imageTag: maskInfo?.imageTag,
-                  })
-                }
-              >
-                Un-mask vulnerability for this image tag
-              </DropdownItem>
-              <DropdownItem
-                onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    imageName: maskInfo?.imageName,
-                  })
-                }
-              >
-                Un-mask vulnerability for this image(all tags)
-              </DropdownItem>
+              {!isDockerImageNameEmpty && (
+                <>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.UNMASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                      )
+                    }
+                  >
+                    Un-mask vulnerability for this image tag
+                  </DropdownItem>
+                  <DropdownItem
+                    onClick={() =>
+                      onTableAction(
+                        ids,
+                        ActionEnumType.UNMASK,
+                        ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                      )
+                    }
+                  >
+                    Un-mask vulnerability for this image(all tags)
+                  </DropdownItem>
+                </>
+              )}
             </>
           )}
           <DropdownItem
             onClick={() =>
-              onTableAction(ids, ActionEnumType.UNMASK, {
-                maskHostAndImages: true,
-              })
+              onTableAction(
+                ids,
+                ActionEnumType.UNMASK,
+                ModelScanResultsMaskRequestMaskActionEnum.Global,
+              )
             }
           >
             Un-mask vulnerability across hosts and images
@@ -949,19 +944,15 @@ const BulkActions = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
 }) => {
   const [openNotifyModal, setOpenNotifyModal] = useState<boolean>(false);
   const { data } = useScanResults();
-  const { data: scanResultData, scanStatusResult } = data;
+  const { scanStatusResult, data: scanResults } = data;
 
   const isHost = scanStatusResult?.node_type === 'host';
+  const isDockerImageNameEmpty = scanResults?.dockerImageName?.trim()?.length === 0;
 
   return (
     <>
@@ -977,41 +968,52 @@ const BulkActions = ({
             {isHost ? (
               <DropdownItem
                 onClick={() =>
-                  onTableAction(ids, ActionEnumType.MASK, {
-                    hostId: scanResultData?.hostId,
-                  })
+                  onTableAction(
+                    ids,
+                    ActionEnumType.MASK,
+                    ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                  )
                 }
               >
                 Mask vulnerabilities for this host
               </DropdownItem>
             ) : (
               <>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: scanResultData?.dockerImageName,
-                      imageTag: scanResultData?.imageTag,
-                    })
-                  }
-                >
-                  Mask vulnerabilities for this image tag
-                </DropdownItem>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.MASK, {
-                      imageName: scanResultData?.dockerImageName,
-                    })
-                  }
-                >
-                  Mask vulnerabilities for this image(all tags)
-                </DropdownItem>
+                {!isDockerImageNameEmpty && (
+                  <>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.MASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                        )
+                      }
+                    >
+                      Mask vulnerabilities for this image tag
+                    </DropdownItem>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.MASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                        )
+                      }
+                    >
+                      Mask vulnerabilities for this image(all tags)
+                    </DropdownItem>
+                  </>
+                )}
               </>
             )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.MASK, {
-                  maskHostAndImages: true,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.MASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Global,
+                )
               }
             >
               Mask vulnerabilities across hosts and images
@@ -1039,41 +1041,52 @@ const BulkActions = ({
             {isHost ? (
               <DropdownItem
                 onClick={() =>
-                  onTableAction(ids, ActionEnumType.UNMASK, {
-                    hostId: scanResultData?.hostId,
-                  })
+                  onTableAction(
+                    ids,
+                    ActionEnumType.UNMASK,
+                    ModelScanResultsMaskRequestMaskActionEnum.Entity,
+                  )
                 }
               >
                 Un-mask vulnerabilities for this host
               </DropdownItem>
             ) : (
               <>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: scanResultData?.dockerImageName,
-                      imageTag: scanResultData?.imageTag,
-                    })
-                  }
-                >
-                  Un-mask vulnerabilities for this image tag
-                </DropdownItem>
-                <DropdownItem
-                  onClick={() =>
-                    onTableAction(ids, ActionEnumType.UNMASK, {
-                      imageName: scanResultData?.dockerImageName,
-                    })
-                  }
-                >
-                  Un-mask vulnerabilities for this image(all tags)
-                </DropdownItem>
+                {!isDockerImageNameEmpty && (
+                  <>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.UNMASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.ImageTag,
+                        )
+                      }
+                    >
+                      Un-mask vulnerabilities for this image tag
+                    </DropdownItem>
+                    <DropdownItem
+                      onClick={() =>
+                        onTableAction(
+                          ids,
+                          ActionEnumType.UNMASK,
+                          ModelScanResultsMaskRequestMaskActionEnum.AllImageTag,
+                        )
+                      }
+                    >
+                      Un-mask vulnerabilities for this image(all tags)
+                    </DropdownItem>
+                  </>
+                )}
               </>
             )}
             <DropdownItem
               onClick={() =>
-                onTableAction(ids, ActionEnumType.UNMASK, {
-                  maskHostAndImages: true,
-                })
+                onTableAction(
+                  ids,
+                  ActionEnumType.UNMASK,
+                  ModelScanResultsMaskRequestMaskActionEnum.Global,
+                )
               }
             >
               Un-mask vulnerabilities across hosts and images
@@ -1485,32 +1498,13 @@ const CVEResults = () => {
     (
       ids: string[],
       actionType: string,
-      maskInfo?: {
-        hostId?: string;
-        imageName?: string;
-        imageTag?: string;
-        maskHostAndImages?: boolean;
-      },
+      maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
     ) => {
       const formData = new FormData();
       formData.append('actionType', actionType);
 
       if (actionType === ActionEnumType.MASK || actionType === ActionEnumType.UNMASK) {
-        if (maskInfo?.maskHostAndImages) {
-          formData.append(
-            'maskHostAndImages',
-            maskInfo?.maskHostAndImages?.toString() ?? '',
-          );
-        }
-        if (maskInfo?.hostId) {
-          formData.append('hostId', maskInfo.hostId?.toString() ?? '');
-        }
-        if (maskInfo?.imageName) {
-          formData.append('imageName', maskInfo.imageName?.toString() ?? '');
-        }
-        if (maskInfo?.imageTag) {
-          formData.append('imageTag', maskInfo.imageTag?.toString() ?? '');
-        }
+        formData.append('maskAction', maskAction?.toString() ?? '');
       }
 
       ids.forEach((item) => formData.append('nodeIds[]', item));
@@ -1629,12 +1623,7 @@ const CVETable = ({
   onTableAction: (
     ids: string[],
     actionType: string,
-    maskInfo?: {
-      hostId?: string;
-      imageName?: string;
-      imageTag?: string;
-      maskHostAndImages?: boolean;
-    },
+    maskAction?: ModelScanResultsMaskRequestMaskActionEnum,
   ) => void;
   setIdsToDelete: React.Dispatch<React.SetStateAction<string[]>>;
   setShowDeleteDialog: React.Dispatch<React.SetStateAction<boolean>>;
@@ -1647,7 +1636,8 @@ const CVETable = ({
   const columnHelper = createColumnHelper<ModelVulnerability>();
   const [sort, setSort] = useSortingState();
 
-  const nodeType = data.scanStatusResult?.node_type ?? '';
+  const nodeType = scanStatusResult?.node_type ?? '';
+  const isDockerImageNameEmpty = scanResultData?.dockerImageName?.trim()?.length === 0;
 
   const columns = useMemo(() => {
     const columns = [
@@ -1666,11 +1656,7 @@ const CVETable = ({
             setShowDeleteDialog={setShowDeleteDialog}
             onTableAction={onTableAction}
             nodeType={nodeType}
-            maskInfo={{
-              imageName: scanResultData?.dockerImageName,
-              imageTag: scanResultData?.imageTag,
-              hostId: scanResultData?.hostId,
-            }}
+            isDockerImageNameEmpty={isDockerImageNameEmpty}
             trigger={
               <button className="p-1">
                 <div className="h-[16px] w-[16px] dark:text-text-text-and-icon rotate-90">
diff --git a/deepfence_frontend/apps/dashboard/src/queries/malware.tsx b/deepfence_frontend/apps/dashboard/src/queries/malware.tsx
index f0c2654064..f37e7063ad 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/malware.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/malware.tsx
@@ -388,8 +388,6 @@ export const malwareQueries = createQueryKeys('malware', {
             },
             tableData: resultMalwareScanResponse.value.malwares ?? [],
             dockerImageName: resultMalwareScanResponse.value.docker_image_name,
-            imageTag: resultMalwareScanResponse.value.docker_image_name,
-            hostId: resultMalwareScanResponse.value.node_id,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,
diff --git a/deepfence_frontend/apps/dashboard/src/queries/secret.tsx b/deepfence_frontend/apps/dashboard/src/queries/secret.tsx
index 4b797c9aa6..41b8b6f273 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/secret.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/secret.tsx
@@ -381,8 +381,6 @@ export const secretQueries = createQueryKeys('secret', {
             },
             tableData: resultSecretScanResponse.value.secrets ?? [],
             dockerImageName: resultSecretScanResponse.value.docker_image_name,
-            imageTag: resultSecretScanResponse.value.docker_image_name,
-            hostId: resultSecretScanResponse.value.node_id,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,
diff --git a/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx b/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
index 4d2a128388..a84005e68e 100644
--- a/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
+++ b/deepfence_frontend/apps/dashboard/src/queries/vulnerability.tsx
@@ -438,8 +438,6 @@ export const vulnerabilityQueries = createQueryKeys('vulnerability', {
             timestamp: resultVulnerabilityScanResponse.value.updated_at,
             tableData: resultVulnerabilityScanResponse.value.vulnerabilities ?? [],
             dockerImageName: resultVulnerabilityScanResponse.value.docker_image_name,
-            imageTag: resultVulnerabilityScanResponse.value.docker_image_name,
-            hostId: resultVulnerabilityScanResponse.value.node_id,
             pagination: {
               currentPage: page,
               totalRows: page * pageSize + resultCounts.value.count,

From 74f8983ff9e3718b5e2f1cf5b352bbe26050647d Mon Sep 17 00:00:00 2001
From: milan-deepfence <rkmilansingh@gmail.com>
Date: Fri, 27 Oct 2023 13:41:48 +0530
Subject: [PATCH 4/4] fix: masking/unmasking for posture

---
 .../src/features/postures/pages/PostureCloudScanResults.tsx     | 2 ++
 .../src/features/postures/pages/PostureScanResults.tsx          | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureCloudScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureCloudScanResults.tsx
index 15762749e0..faed95d6d1 100644
--- a/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureCloudScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureCloudScanResults.tsx
@@ -37,6 +37,7 @@ import { getScanResultsApiClient } from '@/api/api';
 import {
   ModelCloudCompliance,
   ModelScanInfo,
+  ModelScanResultsMaskRequestMaskActionEnum,
   UtilsReportFiltersNodeTypeEnum,
   UtilsReportFiltersScanTypeEnum,
 } from '@/api/generated';
@@ -195,6 +196,7 @@ const action = async ({
     });
     const result = await resultApi({
       modelScanResultsMaskRequest: {
+        mask_action: ModelScanResultsMaskRequestMaskActionEnum.Global,
         result_ids: [...ids],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.CloudComplianceScan,
diff --git a/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureScanResults.tsx b/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureScanResults.tsx
index e4cb4d2338..d4a0bf0181 100644
--- a/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureScanResults.tsx
+++ b/deepfence_frontend/apps/dashboard/src/features/postures/pages/PostureScanResults.tsx
@@ -37,6 +37,7 @@ import { getScanResultsApiClient } from '@/api/api';
 import {
   ModelCompliance,
   ModelScanInfo,
+  ModelScanResultsMaskRequestMaskActionEnum,
   UtilsReportFiltersNodeTypeEnum,
   UtilsReportFiltersScanTypeEnum,
 } from '@/api/generated';
@@ -189,6 +190,7 @@ const action = async ({
     });
     const result = await resultApi({
       modelScanResultsMaskRequest: {
+        mask_action: ModelScanResultsMaskRequestMaskActionEnum.Global,
         result_ids: [...ids],
         scan_id: _scanId,
         scan_type: ScanTypeEnum.ComplianceScan,