dependency-track-plugin icon indicating copy to clipboard operation
dependency-track-plugin copied to clipboard
verified publisher icon jenkinsci

Support active flag

Open fabian-zeindl-oebb opened this issue 10 months ago • 3 comments

What is your feature request about?

Dependency-Track has an active-Flag that can be set for a specific version.

Describe the solution you'd like

It should be possible to set that flag when uploading via the Jenkins Plugin.

The declarative and scripted pipeline commands should include a boolean option active that sets the Dependency-Track flag active accordingly.

Additional context

No response

fabian-zeindl-oebb avatar Feb 11 '25 09:02 fabian-zeindl-oebb

Newly created projects are active by default. The only use case I can think of would be to mark them as inactive. Uploading BOMs for inactive projects makes no sense to me. Therefore, this request makes no sense to me.

sephiroth-j avatar Mar 18 '25 19:03 sephiroth-j

@sephiroth-j I am in agreement with it not being a good idea to have the plugin attempt to alter the project from inactive to active.

But how about the plugin retrieving the setting and displaying a warning when a build is uploading to an inactive project? Or marking the build as unstable?

msymons avatar Mar 21 '25 11:03 msymons

@msymons, I don't think anyone would read the warning unless the build is marked unstable, and that wouldn't be appropriate in my opinion.

sephiroth-j avatar Mar 23 '25 18:03 sephiroth-j