django-DefectDojo

django-DefectDojo copied to clipboard

[FIX] Edit Finding's mitigated time (EDITABLE_MITIGATED_DATA)

20

When using "EDITABLE_MITIGATED_DATA = True", several issues are present within the DefectDojo application: - Closing a finding with a mitigation date in the past close the finding badly: - The...

X0x1RG9f

Dependency Track deduplication not working

10

**Bug description** I integrated DefectDojo per project into Dependency Track as described here: https://docs.dependencytrack.org/integrations/defectdojo/ By this a report is sent from DependencyTrack to DefectDojo every hour. Looking at the Engagement-view...

8L4ckc0FF33

Create an API import for Bugcrowd

1

**Scanner Name** Bugcrowd, for bug bounty and vulnerability disclosure programs. The current import is for a CSV that can only be downloaded in the UI, not really automatable. **Sample File**...

Gby56

JQuery Error when Editing Finding

1

When editing a finding, there is a JS JQuery error. For example, when clicking on "alerts" ring at the top right corner of the page, content won't be displayed.

X0x1RG9f

Reassign an engagement to another product

1

Hello, Using the web interface, I can edit an engagement (https://demo.defectdojo.org/engagement/[ID]/edit). Last option is to change the associated product but when I submit the form ("Done" button), the new product...

gzot

[FIX] Issues on disconnection and connection using Social Auth

5

Fix two issues that appear when SOCIAL_AUTH and "SHOW_LOGIN_FORM = False" are combined (no /login form): - When disconnecting, as return URL is not /login and does not contains next...

X0x1RG9f

Fix parser horusec

1

**I'm doing this update because when trying to import a report from Horusec you get the following error:**  **I noticed that the reports...

srburton

added oauth support in jira integration

6

Hi! I've added the oauth authentication in jira integrations section.

ndenisof

Include code flows in finding description when importing SARIF

1

Each finding in a SARIF file can contain a [codeFlows property](https://docs.oasis-open.org/sarif/sarif/v2.1.0/os/sarif-v2.1.0-os.html#_Toc34317656) that can refer to multiple source code locations relevant to the finding. SAST tools often use this property to...

kdyck-cb

[Jira Integration] Story Status Update Problem

1

**Problem:** I was working on the Jira integration. The DefectDojo side worked as expected. I can export to Jira and the status of the stories is getting updated as I...

fxble