We are trying to use project properties with webhook notifications.
For some notifications (like POLICY_VIOLATION), subject.project.properties is populated as expected. But for other notifications (like NEW_VULNERABLE_DEPENDENCY), subject.project.properties is empty (no null).
Same thing when using subject.component.project.properties instead of subject.project.properties.
Is this the expected behavior? Or maybe there is a better or more consistent way to get project properties in notification templates?
Steps to Reproduce
1.Add a new webhook notification with this template:
Current Behavior
We are trying to use project properties with webhook notifications.
For some notifications (like
POLICY_VIOLATION
),subject.project.properties
is populated as expected. But for other notifications (likeNEW_VULNERABLE_DEPENDENCY
),subject.project.properties
is empty (no null). Same thing when usingsubject.component.project.properties
instead ofsubject.project.properties
.Is this the expected behavior? Or maybe there is a better or more consistent way to get project properties in notification templates?
Steps to Reproduce
1.Add a new webhook notification with this template:
Results for a
POLICY_VIOLATION
notification:Results for a
NEW_VULNERABLE_DEPENDENCY
notification (no properties in the result):Expected Behavior
The ability to have access to project properties consistently for all notification types.
Dependency-Track Version
4.12.0
Dependency-Track Distribution
Container Image
Database Server
PostgreSQL
Database Server Version
12
Browser
Google Chrome
Checklist