hyades
hyades copied to clipboard
Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
Bumps [io.smallrye:jandex-maven-plugin](https://github.com/smallrye/jandex) from 3.1.8 to 3.2.0. Release notes Sourced from io.smallrye:jandex-maven-plugin's releases. 3.2.0 #370 release 3.2.0 #368 move to next minor version, 3.2.0 #361 add annotation overlay #356 skip Jandex...
Bumps `quarkus.platform.version` from 3.10.1 to 3.11.0. Updates `io.quarkus:quarkus-bom` from 3.10.1 to 3.11.0 Release notes Sourced from io.quarkus:quarkus-bom's releases. 3.11.0.CR1 Major changes #38448 - Initial Observability extension - devservices, devresources, LGTM...
### Current Behavior v4.11 of vanilla Dependency-Track is about to be released. We need to port the relevant changes to Hyades. For reference, changes from v4.10.x were ported here: https://github.com/DependencyTrack/hyades/issues/983...
### Current Behavior Currently, there is no option to upload sbom with cloning project. Project is cloned based on version and project name. Following flags provide an option on what...
### Current Behavior Currently, local development on the API server requires Kafka and PostgreSQL to be launched [via Docker Compose](https://github.com/DependencyTrack/hyades/blob/main/docker-compose.yml). While this works, it's a bit fiddly and not a...
### Current Behavior Currently, when a project is cloned (via endpoint /project/clone), state on its completion is not maintained which makes it hard to determine if its cloning is finished...
### Current Behavior The Helm chart currently lives at https://github.com/DependencyTrack/hyades/tree/main/helm-charts/hyades, and is not published to any chart repository. That makes it hard to discover, and cumbersome to deploy. ### Proposed...
Uploading large BOMs can result in extensive network latency, potentially causing clients to time out before a response is received. Support BOM compression both in frontend and API server.
At the moment, vulnerability policies are "enforced" as soon as they are created in the system. There may be situations however, in which policies are supposed to be deployed, but...
### Description PR to test the sonar analysis being triggered by PRs raised from forks. This PR is being raised from my fork to test it. ### Checklist - [x]...