Audit vulnerabilities not showing records of big projects

[Pabloo-ss]

Current Behavior

When uploading large SBOMs and accessing audit vulnerabilities inside the project, "No matching records found" is displayed although project has many vulns.

Steps to Reproduce

1. Upload large SBOM
2. Go to audit vulnerabilities inside the project
3. "No matching records found" is displayed go_sbom.json

Expected Behavior

Display all vulns. The rest of the projects, which are quite smaller display vulns correctly, except another project which is also quite large and undergo the same problem (both projects are SBOM of root level manifests in monorepo: pnpm-lock.yaml and go.mod)

Dependency-Track Version

4.11.5

Dependency-Track Distribution

Container Image

Database Server

PostgreSQL

Database Server Version

No response

Browser

Google Chrome

Checklist

• [X] I have read and understand the contributing guidelines
• [X] I have checked the existing issues for whether this defect was already reported

[nscuro]

Can you please check the Console and Network tabs in your browser's developer tools? Any errors or failing / slow requests when you click Refresh on the findings table?

Based on your screenshot I'm inclined to say the request for fetching findings is timing out.

There are some quite significant performance improvements coming for this in v4.12: https://github.com/DependencyTrack/dependency-track/pull/3869

[Pabloo-ss]

You are right, Im getting a 504. I suppose Ill have to wait until v4.12 is released... Thank you!!

[nscuro]

Thanks, I'll close this as duplicate of #3811 then.

[github-actions[bot]]

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.