django-DefectDojo

django-DefectDojo copied to clipboard

Change CLI tool reference in docs

1

Description On the "External Tools: Universal Importer & DefectDojo-CLI (Pro)" docs page, universal importer code blocks still reference "defectdojo-cli". Those references were changed to "universal-importer." Changes were tested using hugo....

Jino-T

Bulk Edit on Tags Improvements (Add/Replace/Remove)

3

**Bug description** Bulk edit on tags (Findings, Engagements) does not remove the tags from the modified Objects. Edit on Object tags (removal) does not remove child objects Tags. For example,...

X0x1RG9f

API: prevent duplicate saves of taggable entities or when pushing to JIRA

3

When creating or updating findings (or other entities that have a `tags` field), the `Finding.save()` method was called multiple times. Ultimately the `finding` was saved correctly, but this lead to...

valentijnscholten

When closing a linked Jira with comment added, the comment is not added to the Notes on Defect Dojo

3

**Bug description** Where a Jira issue is linked to a Defect Dojo finding, **when closing the linked Jira**, the accompanying comment does NOT appear on the _notes_ section of the...

jeremychoi

Optimize queryset annotations & prefetches to cut DB time for test / finding / product views (issue #12575)

6

Fixes [DefectDojo #12575](https://github.com/DefectDojo/django-DefectDojo/issues/12575) This PR is a pure-Python refactor that keeps every public API and template untouched while eliminating the two main performance bottlenecks reported in the issue: • Correlated...

DenysMoskalenko

Mayhem SARIF support (new parser)

3

**Description** This supports parsing Mayhem-generated SARIF reports. In general, the existing SARIF support _should_ work, however, there are some idiosyncrasies as Mayhem is a DAST tool, where the output fields...

xansec

Bulk Delete Inactive Users (UI & API Support)

1

Hi DefectDojo team, First of all, thank you for providing and maintaining such a great platform—DefectDojo has been invaluable to our security workflow. My name is Muhammed, and I work...

Hamudah

Support for prowler scan

6

# Prowler Scan Parser for DefectDojo **Description** This PR adds support for importing security scan results from Prowler - a security assessment and compliance tool for AWS, Azure, GCP, and...

cosmel-dojo

Findings duplication after import more than once trivy scan reports

1

Hi defect dojo team. I'm using a script to import data reports to defectdojo via API. When I use this script, I have duplication on the findings. I've checked "deduplicate...

mgsilva97

Wizcli improvements

7

**Description** 1. Core Functionality: - Implemented a robust parsing system for different types of Wiz CLI scan results: - Library vulnerabilities - Secrets detection - OS package vulnerabilities - Infrastructure...

OsamaMahmood