-
The purpose of this issue is to provide SBOMs for all ASF binary distributions, starting with those that:
- contain executable applications,
- bundle all or most of their dependencies.
These ar…
-
Hipcheck today effectively produces three artifacts with each release, each of which should have an SBOM:
- [ ] Hipcheck Docker image published to Docker Hub
Of these, the binaries are probably …
-
Post build filter that evaluates the generated sbom based on a pre-approved sbom list, to allow image distribution.
Job should fail in case a new package gets included and it is not previously appr…
-
### Current Behavior
Hello,
In some cases, very old CVEs are identified while they don't seem to actually affect the project. In my case I generate an CycloneDX 1.6 SBOM using trivy for the followin…
-
### Current Behavior
In DependencyTrack version 4.12.x and above, after initially creating a project and then updating it with an SBOM, the Project `classifier` set to `APPLICATION` in this case gets…
-
### Current Behavior
Hello,
Firstly, we upload the sbom to one dependency track server, after dependency tack done analysis, we download the sbom from and we found that inside of it the `purl` of ou…
-
### Current Behavior
Using API to create projects with multiple threads and import sbom files, but encountering error 500, I would like to know if we support multiple threads
### Steps to Reproduce
…
-
### Description
When starting Docker i always have to recover the WSL distribution.
With every start of the Docker Desktop App i get a warning "Docker Desktop distro installation failed".
After th…
-
### Description
ID: 5841F4FB-BDAD-477D-8957-714183F28781/20241113054727
Docker Desktop - Unexpected WSL error
An unexpected error occurred while executing a WSL command.
Either shut down WSL down …
-
### Current Behavior
Hello,
We upload several SBOM files holding hundreds of dependencies, but when calling ODT API api/v1/bom/cyclonedx/project/XXXX?variant=withVulnerabilities -> we're missing th…