Parent-Child-Logic does not apply in "Vulnerability Audit" filters.

[BoaThor]

Current Behavior

I notices that it seems to be impossible to gather a full report for a root project that uses the parent-child logic (relationship). The "Vulnerability Audit" and the Filter should enable finding all vulnerabilities for a project and sub-projects below the hierarchical level of root.

Currently the search for a root project provides 0 vulnerabilities. A situation which might be critically dangerous for the auditing and patch management process.

So there is currently no option in the gui to find all vulnerabilities related to a project - this makes management of big projects extremely hard and error prone.

In the filter there should be a box "including child objects" or child-objects should be included by default.

Steps to Reproduce

1. Create a Project with 10 Sub-Projects - all including Vulnerabilities - you can use public rancher or red hat sbom for that
2. Go to Vulnerability Audit
3. Search for the parent/root object name
4. see that 0 results are returned

Expected Behavior

1. Go to "Vulnerability Audit" filter
2. Set a root project name as filter
3. All vulnerabilities of the project - incl. the child projects which are obviously part of the project - are returned

Dependency-Track Frontend Version

4.13.4

Browser

Google Chrome

Browser Version

142.0.7444.60

Operating System

Windows

Checklist

• [x] I have read and understand the contributing guidelines
• [x] I have checked the existing issues for whether this defect was already reported