search

DefectDojo / django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.
https://defectdojo.com
BSD 3-Clause "New" or "Revised" License
3.6k stars 1.51k forks source link

new sonatype scanner #10576

Closed johnfelipe closed 1 month ago

johnfelipe commented 1 month ago

Release 174 Powered by Sonatype IQ Server

SNAG-0466

TNC_PrimeRead-build-f2c3b683f67343329c446f2c3847e447.spdx.json

mtesauro commented 1 month ago

@johnfelipe FWIW, DefectDojo supports CycloneDX which I see as a supported output.

https://documentation.defectdojo.com/integrations/parsers/file/cyclonedx/

So, while we could add support for SPDX, it seems somewhat unnecessary.

manuel-sommer commented 1 month ago

Can we close this issue then, @mtesauro ?