dependency-track icon indicating copy to clipboard operation
dependency-track copied to clipboard

Published 20 hours ago verified publisher icon DependencyTrack

Metadata

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Results 588 dependency-track issues
Sort by recently updated
recently updated
newest added

Notifications subjects - add additional information (e.g. Project/Component/Severity) into Subject string

7 comment

### Current Behavior: The notification email's subject are hard coded right now. ### Proposed Behavior: add the notification subject configuration to the notification template and use same params as there...

JN-CSIRT avatar JN-CSIRT

enhancement
p3
good first issue
needs milestone

Project parent child relationship

7 comment

The database offers the feature of having a parent child relation between projects. In our case we use projects as parts of the end user project. The content of the...

stephan-wolf-ais avatar stephan-wolf-ais

duplicate
enhancement

Improve PURL Component Search

### Current Behavior: I have components that look like this: ``` pkg:maven/foo.bar.cat/[email protected]?type=jar pkg:maven/foo.bar.cat/[email protected]?type=jar pkg:maven/foo.bar.cats/[email protected]?type=jar ``` It is not possible to search for `cat` without also getting hits on `cats` (that...

msymons avatar msymons

enhancement

Track and handle changes in which versions are affected by a given vulnerability

### Current Behavior: When mirroring vulnerability databases, we map them to the following internal models: * `Vulnerability`: The vulnerability itself, including ID, source, references, severity, CVSS, etc. * `VulnerableSoftware`: Describes...

nscuro avatar nscuro

enhancement
p2

Direct URLs for Dependency Track Resources

### Current Behavior: Dependency-Track usability is lowered by there being no way to share or save URLs for screen tabs or searches. Thus, if I want to (say) use Slack...

msymons avatar msymons

enhancement
help wanted
p3

Upgrade to Java 17

1 comment

Depends on https://github.com/stevespringett/Alpine/pull/410 Note: The compilation target version is defined in Alpine (which is still 11 in `master`). This PR includes the necessary changes to build and run DT with...

nscuro avatar nscuro

enhancement
ci

Switching project version does not update property in view

### Current Behavior: When using the version switch in the project view next to the project name, the project properties are not updated. ### Steps to Reproduce: Create two identical...

IchGehSteil avatar IchGehSteil

in triage

Include dependencies when downloading the SSOM from project component.

The enhancement may already be reported! Please search for the enhancement before creating one. ### Current Behavior: Currently when you download the SBOM from Home->Projects->->Components tab dependencies are not included....

halaharr avatar halaharr

enhancement
p3
good first issue

SBOM Details and Management - List of Suggested Improvements

2 comment

The enhancement may already be reported! Please search for the enhancement before creating one. Hi I have a list of enhancements that I think would really make DependencyTrack a really...

matamorphosis avatar matamorphosis

enhancement

Added CycloneDX export of Vulnerability Disclosure Report (VDR)

stevespringett avatar stevespringett

enhancement

Metadata

2.4k
Stars
517
Forks
Watchers

Owner

verified publisher icon DependencyTrack

Metadata

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Back