django-DefectDojo
django-DefectDojo copied to clipboard
DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
Bumps [django-filter](https://github.com/carltongibson/django-filter) from 21.1 to 22.1. Changelog Sourced from django-filter's changelog. Version 22.1 (2022-6-17) Update supported Python and Django versions: minimal Python is now 3.7, minimum Django is now 3.2....
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [jira](https://github.com/pycontribs/jira) from 3.0.1 to 3.3.2. Release notes Sourced from jira's releases. v3.3.2 Bugfixes allow filter updates when no description returned by Jira (#1447) @adehad Fix bug preventing use of...
Add data in `unique_id_from_tool` based on [fingerprints](https://docs.oasis-open.org/sarif/sarif/v2.1.0/os/sarif-v2.1.0-os.html#AppendixFingerprints) in the SARIF reports. Also this PR enable de-duplication based on this data or fallback to the old hash method. I also added...
When doing the last release, I was really bothered that the helm test failed from merging dev into master (ptsd from last release) but had not failed from merging regular...
DefectDojo's SARIF parser does not take into account values provided in the [partialFingerprints property](https://docs.oasis-open.org/sarif/sarif/v2.1.0/os/sarif-v2.1.0-os.html#_Toc34317655) for deduplication. It would be nice if it did. The legacy deduplication algorithm used by the...
Hi, everyone! On page /metrics/product/type we have a bug with sorting list of top 10 product by bug severity. The error lies in the fact that projects with 0 critical...
https://defectdojo.github.io/django-DefectDojo/getting_started/configuration/ It has been a bit hard to decipher what exactly needs to be done to configure the system. Those who aren't familiar with docker-compose, docker files, django, and python...etc...
Hi Team, We are trying to integrate talisman findings report with defectdojo. Is there any integration supported by defectdojo? or talisman is generating json report; Is there any option to...
**Issue** The current Black Duck Hub version (2022.2.0) has more fields in the security.csv (Most importantly "CWE Ids"). We would like to have the CWEs imported alongside the rest of...
**Safety** PyUp safety appears to have been handled by DefectDojo at one point in time. Refer to [Issue 1754](https://github.com/DefectDojo/django-DefectDojo/issues/1754). Not sure why this was removed, as with our current implementation...
Metadata
Owner
Metadata
DevSecOps, ASPM, Vulnerability Management. All on one platform.