Niklas
Niklas
Reopening because the original ask was for supporting templating.
We're tracking this in https://github.com/DependencyTrack/dependency-track/issues/2875.
Every BOM upload generates an event. Depending on how it's triggered, every project or individual component may produce multiple events (check for policy violations, check for vulnerabilities, check for newer...
Moving to a later milestone. FTR, this issue is intertwined with the migration from Java EE to Jakarta EE namespaces, which includes an upgrade of Jersey and Jetty. The current...
Will be fixed in #3357.
@ataraxus Which issue specifically? DT v4.9 added initial support for SPDX expressions. They are now ingested from uploaded SBOMs and can be used in policies (see https://docs.dependencytrack.org/usage/policy-compliance/#license-violation).
In that case, give v4.9 a try. Without question we still have room for improvement, hence this ticket not being closed yet. But expressions are now taken correctly and displayed...
@ansonallard For the SPDX expression feature to work, the expression must be present in the `licenseExpression` field. In the API response you shared, it's in the `license` field. Did you...
May I ask what tool you used to generate the SBOM?
Closing as Jira support was shipped in 4.7. @elastic-pangolin, @Mvld3r thank you both for your efforts, it's much appreciated. @elastic-pangolin, we'd love to have Google Chat integration. If you'd still...