hyades icon indicating copy to clipboard operation
hyades copied to clipboard
verified publisher icon DependencyTrack

Port changes from upstream DT release 4.11.x

Open nscuro opened this issue 1 year ago • 2 comments

Current Behavior

v4.11 of vanilla Dependency-Track is about to be released. We need to port the relevant changes to Hyades.

For reference, changes from v4.10.x were ported here: https://github.com/DependencyTrack/hyades/issues/983

Proposed Behavior

API server: https://github.com/DependencyTrack/dependency-track/milestone/26?closed=1 Frontend: https://github.com/DependencyTrack/frontend/milestone/18?closed=1

Issue / PR Type Description Backported Backport PR
https://github.com/DependencyTrack/dependency-track/pull/3260 Enhancement Return processing token when cloning project https://github.com/DependencyTrack/hyades-apiserver/pull/659
https://github.com/DependencyTrack/dependency-track/pull/3285 Enhancement Add "Show in Dependency-Graph" Button in "Affected Projects" List https://github.com/DependencyTrack/hyades-apiserver/pull/671
https://github.com/DependencyTrack/dependency-track/pull/3511 Enhancement adding cargo to IMetaAnalyzer https://github.com/DependencyTrack/hyades/pull/1242
- - - -

Checklist

nscuro avatar Apr 12 '24 14:04 nscuro

Labeled as good first issue since it's easy to pick individual changes. The expectation is not that all changes are ported in one go.

Essentially, pick a change from v4.11, and port only that change. I am happy to suggest tickets to port, and provide guidance on the implementation if folks are interested and not sure where to start.

nscuro avatar Apr 12 '24 14:04 nscuro

hi i'm interested in working on this, feel free to assign me

leec94 avatar Apr 12 '24 17:04 leec94

https://github.com/DependencyTrack/hyades/pull/1051

this PR ported issues from 4.11 to 4.10.x, so they already exist in hyades

these are the 4.11 issues that are already ported

  • https://github.com/DependencyTrack/dependency-track/pull/3305
  • https://github.com/DependencyTrack/dependency-track/pull/3313

leec94 avatar May 28 '24 19:05 leec94

Thanks @leec94, I updated the table in the issue accordingly!

nscuro avatar May 29 '24 09:05 nscuro

Extracted Trivy support into separate issue since it'll be a larger task: https://github.com/DependencyTrack/hyades/issues/1343

nscuro avatar Jun 18 '24 14:06 nscuro