Timo Pagel
Timo Pagel
As an OpenSource user and a `vendor`, I envision enhancing Dependency Track with a CSAF management system to better manage security vulnerabilities. Specifically, I propose reflecting the state of a...
Hi @gramsimamsi , thank you, changed it to "container outbreak". What do you think about adding "Privilege Escalation in Deamon" or "Exploits" as a leaf of "Container Outbreak" (e.g. dirty...
@gramsimamsi my fault. "...on the other hand, other kernel or daemon exploits might be used for DOS, too" or network... Therefore, I added a note next to DoS Please check...
@gramsimamsi thank you! Please check the mind map on slide 74 again.
@hartwork: @drwetter announced to create an other one and will not maintain the current one. Therefore, I have not placed my updates here. Everyone can copy and adjust the mind...
#11 Please try `pip install -I defectdojo_api==1.1.3`
This works (based on securecodebox): https://github.com/wurstbrot/defectdojo-java-api It will be moved to DefectDojos repo space as soon as @aaronweaver will create a repo in that space. cURL/Bash-based works also, but is...
I have a recommendation: In CommandLine, add a check that the file exists, e.g.: > ``` > for(path if(!java.nio.file.Files.exists(java.nio.file.Paths.get(path))) { > streams.log.error("Error: Could not find plugin" + path); > }...
I can confirm this bug. A solution is to use the image `teamdojo` in _src/main/docker/app.yml_ .
Hi @drwetter, sorry for the delay! _production_ is what we mean. A setup can be to scan production and staging envirnoment. From a security perspective I am interested in what...