Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Port changes from upstream DT release 4.12.x #1358

Open
2 tasks done
Tracked by #860
nscuro opened this issue Jun 24, 2024 · 0 comments
Open
2 tasks done
Tracked by #860

Port changes from upstream DT release 4.12.x #1358

nscuro opened this issue Jun 24, 2024 · 0 comments
Labels
enhancement New feature or request v4-port PRs that were ported from the Dependency-Track v4.x code base

Comments

@nscuro
Copy link
Member

nscuro commented Jun 24, 2024
edited by sahibamittal
Loading

Current Behavior

v4.12 of vanilla Dependency-Track is being worked on. We need to port the relevant changes to Hyades.

Note

This issue is being created early, in order to keep track of the v4.12.x changes we have already ported prior to an official v4.12 release.

For reference, changes from v4.11.x were ported here: #1190

Proposed Behavior

Issue / PR Type Description Backported Backport PR
DependencyTrack/dependency-track#3682 Enhancement Raise baseline Java version to 21 DependencyTrack/hyades-apiserver#628
DependencyTrack/dependency-track#3711 Enhancement Bump Alpine to 2.2.6-SNAPSHOT DependencyTrack/hyades-apiserver#815
DependencyTrack/dependency-track#3713 Enhancement Remove workarounds for #2677 N/A, workaround was never in place for Hyades -
DependencyTrack/dependency-track#3722 Enhancement Remove legacy BomUploadProcessingTask N/A, legacy task does not exist in Hyades -
DependencyTrack/dependency-track#3724 Enhancement Gracefully handle NotSortableExceptions DependencyTrack/hyades-apiserver#832
DependencyTrack/dependency-track#3726 Enhancement Migrate from Swagger v2 to OpenAPI v3 DependencyTrack/hyades-apiserver#785
DependencyTrack/dependency-track#3728 Enhancement Improve OpenAPI v3 integration DependencyTrack/hyades-apiserver#820
DependencyTrack/dependency-track#3730 Enhancement Migrate to Jakarta EE 10 and Jetty 12 DependencyTrack/hyades-apiserver#785
DependencyTrack/dependency-track#3731 Bugfix Fix OpenAPI types of UNIX timestamp fields DependencyTrack/hyades-apiserver#833
DependencyTrack/dependency-track#3746, DependencyTrack/frontend#930 Enhancement Add EPSS conditions to policies DependencyTrack/hyades-apiserver#834, DependencyTrack/hyades-frontend#114
DependencyTrack/dependency-track#3819 Enhancement Bump CWE dictionary to v4.14 DependencyTrack/hyades-apiserver#842, #1445
DependencyTrack/dependency-track#3846 Enhancement Bump SPDX license list to v3.24.0 DependencyTrack/hyades-apiserver#844
DependencyTrack/dependency-track#3869 Enhancement Improve performance of findings retrieval DependencyTrack/hyades-apiserver#757
DependencyTrack/dependency-track#3889 Bugfix Fix NPE when querying component metadata for projects without findings DependencyTrack/hyades-apiserver#765
DependencyTrack/frontend#927 Enhancement Raise baseline node version to 20 DependencyTrack/hyades-frontend#86
DependencyTrack/dependency-track#3990 Enhancement Log warning when dependency graph is missing the root node DependencyTrack/hyades-apiserver#795
DependencyTrack/dependency-track#3982 Enhancement Ensure no unique constraint violation for ProjectMetadata TODO TODO
DependencyTrack/dependency-track#3958 BugFix Fix JDOUserException when multiple licenses match a component's license name DependencyTrack/hyades-apiserver#806
DependencyTrack/dependency-track#3960, DependencyTrack/dependency-track#3843 Enhancement Fix missing projectTags parameter for POST /v1/bom endpoint DependencyTrack/hyades-apiserver#814
DependencyTrack/dependency-track#3691, DependencyTrack/frontend#872 Enhancement Add active Field To Project Versions + frontend DependencyTrack/hyades-apiserver#813, DependencyTrack/hyades-frontend#106
DependencyTrack/dependency-track#3924 Enhancement Add REST endpoints to tag and untag policies in bulk + frontend DependencyTrack/hyades-apiserver#830, DependencyTrack/hyades-frontend#113
DependencyTrack/dependency-track#3711 Enhancement Replace manual transaction commits with callInTransaction DependencyTrack/hyades-apiserver#815
DependencyTrack/dependency-track#3894 Enhancement Add REST endpoints for bulk tagging & un-tagging of projects DependencyTrack/hyades-apiserver#821
DependencyTrack/dependency-track#3881, DependencyTrack/frontend#922, DependencyTrack/dependency-track#3887 Enhancement Add REST endpoints for tag retrieval + frontend DependencyTrack/hyades-apiserver#819, DependencyTrack/hyades-frontend#107
DependencyTrack/dependency-track#3896 Enhancement Add REST endpoint for tag deletion DependencyTrack/hyades-apiserver#824, DependencyTrack/hyades-frontend#112
DependencyTrack/dependency-track#4026 BugFix Fix project link for new vulnerable dependency for email #1440, DependencyTrack/hyades-apiserver#835
DependencyTrack/dependency-track#3761 Enhancement Search component by group DependencyTrack/hyades-apiserver#836
DependencyTrack/dependency-track#3796 Enhancement Add Notification For BOM_VALIDATION_FAILED #1443, DependencyTrack/hyades-apiserver#839, DependencyTrack/hyades-frontend#116
DependencyTrack/dependency-track#3915 Bugfix Set license name instead of ID when using custom license DependencyTrack/hyades-apiserver#845
DependencyTrack/dependency-track#3948 Bugfix Fix vex export returning invalid CycloneDX DependencyTrack/hyades-apiserver#852
DependencyTrack/dependency-track#4020 Bugfix Fix validation error when multiple namespace declarations are present DependencyTrack/hyades-apiserver#874
DependencyTrack/dependency-track#3969 Enhancement Replace author with authors TODO DependencyTrack/hyades-apiserver#866
DependencyTrack/dependency-track#4104 Bugfix Bump DataNucleus to 6.0.8 DependencyTrack/hyades-apiserver#882
DependencyTrack/dependency-track#4147, DependencyTrack/dependency-track#4146 Bugfix Handle existing duplicate component properties, Handle empty component and service names DependencyTrack/hyades-apiserver#911
DependencyTrack/dependency-track#4131 Enhancement Customizable login page + frontend DependencyTrack/hyades-apiserver#913, DependencyTrack/hyades-frontend#133
DependencyTrack/dependency-track#4109 Enhancement Support inclusion/exclusion of projects from BOM validation with tags + frontend DependencyTrack/hyades-apiserver#914, DependencyTrack/hyades-frontend#134
DependencyTrack/dependency-track#4031 Enhancement Add tag support for notifications, and REST endpoints for tagging & untagging notifications in bulk + frontend TODO @sahibamittal

Checklist
@nscuro nscuro added enhancement New feature or request v4-port PRs that were ported from the Dependency-Track v4.x code base labels Jun 24, 2024
This was referenced Jun 28, 2024
Merged
Merged
This was referenced Jul 6, 2024
Merged
Open
This was referenced Jul 23, 2024
Merged
Merged
Closed
Merged
Merged
@sahibamittal sahibamittal mentioned this issue Jul 31, 2024
Merged
5 tasks
@nscuro nscuro pinned this issue Jul 31, 2024
@nscuro nscuro mentioned this issue Jul 31, 2024
Merged
2 tasks
This was referenced Jul 31, 2024
Closed
Merged
Merged
@nscuro nscuro mentioned this issue Aug 1, 2024
Merged
2 tasks
This was referenced Aug 2, 2024
Merged
Merged
Merged
Merged
Merged
This was referenced Aug 7, 2024
Merged
Merged
Merged
This was referenced Aug 8, 2024
Merged
Merged
Merged
Merged
This was referenced Aug 8, 2024
Merged
Merged
This was referenced Aug 9, 2024
Merged
Merged
Merged
Merged
@sahibamittal sahibamittal mentioned this issue Aug 13, 2024
Merged
5 tasks
This was referenced Aug 23, 2024
Merged
Merged
@nscuro nscuro mentioned this issue Aug 30, 2024
Merged
2 tasks
This was referenced Sep 17, 2024
Merged
Merged
Merged
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request v4-port PRs that were ported from the Dependency-Track v4.x code base
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@nscuro