django-DefectDojo
django-DefectDojo copied to clipboard
DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
This small feature looks interesting. It can be useful if you want to tag scanner used for test or CI Engagement in Jira label. https://github.com/DefectDojo/django-DefectDojo/issues/5095#issue-995792308 Please, vote for this improvement...
**Bug description** Dojo doesn't check description max length before export to jira. As a result error recieved for findings with too long description. ``` : Elasticsearch Information Disclosure, The entered...
Currently the API authorization is granted through an API key which has unlimited lifetime. As there is no policy, token renewal cannot be enforced. It would be more secure to...
Hi! thank you in advance for developing this awesome tool :) I've been reading the documentation and READMEs searching for a simple but secure way to configure https. I'm testing...
Adding [Whispers](https://github.com/adeptex/whispers) - scanner for identifying secrets in structured static text.
**Is your feature request related to a problem? Please describe** When calling the import/reimport API endpoint with large (30k+ findings) payloads it takes a long time for the server to...
As cve was replaced by vuln_id the filtering for cves from NVD is unnecessary
This PR adds a new field to the Finding model to store the Planned Remediation Date. This is used to track progress towards remediation and to indicate to security teams...
We are a team of university students from Hochschule Furtwangen University in Furtwangen, Germany. As part of a scientific research project, we were tasked with creating a DefectDojo Parser for...
This PR accomplishes two things: 1. Adapts the github workflows, so that both a multi-arch image is build, for both arm64 and amd64 2. Updates the base images of defectdojo-django...
Metadata
Owner
Metadata
DevSecOps, ASPM, Vulnerability Management. All on one platform.