Hello! Thank you for your work!! Wanted to ask your team, dear Dependency Track, we need a summary of risk scores and component on parent projects. Right now we have 10 child project under 1 parent, each of childs are showing their own risk score etc. But parent project itself simply shows 0. Can you please also bring a summary of all childs for parent projects? Thank you🙏
There is work in progress that will help to address this need. It is titled "Introduce `collection` projects for better usage of hierarchical view" and is assigned to the v4.13 milestone. Frontend PR 658 includes screenshots. Contributions are welcome, as the `collection` PRs do still need some more work,
And also also, is there going to be a integration with some repos related to EOL/EOS? Like besides the info about this component is out of date and which version is the newest, is there a plan of seeing also an end-of-life date if this component of this version? Thank you
Support for "End of Life" and "End of Support" will most definitely be added to Dependency-Track... but is likely to take at least another year. The OWASP "Common Lifecycle Enumeration" project is currently developing a formal specification and when it is published then that is when Dependency-Track will be able to roll-out a "reference implementation".
Hello! Thank you for your work!! Wanted to ask your team, dear Dependency Track, we need a summary of risk scores and component on parent projects. Right now we have 10 child project under 1 parent, each of childs are showing their own risk score etc. But parent project itself simply shows 0. Can you please also bring a summary of all childs for parent projects? Thank you🙏
There is work in progress that will help to address this need. It is titled "Introduce `collection` projects for better usage of hierarchical view" and is assigned to the v4.13 milestone. Frontend PR 658 includes screenshots.
Contributions are welcome, as the `collection` PRs do still need some more work,
@@DependencyTrack Thank you so much for the information, got it!)
And also also, is there going to be a integration with some repos related to EOL/EOS? Like besides the info about this component is out of date and which version is the newest, is there a plan of seeing also an end-of-life date if this component of this version? Thank you
Support for "End of Life" and "End of Support" will most definitely be added to Dependency-Track... but is likely to take at least another year.
The OWASP "Common Lifecycle Enumeration" project is currently developing a formal specification and when it is published then that is when Dependency-Track will be able to roll-out a "reference implementation".