OWASP Dependency-Track

CloudBees CIVersion: 6.0.1

Tier 3: Community

Plugin ID: dependency-track

Minimum Jenkins required: 2.479.1

Last released: 1 month, 1 day ago

This plug-in publishes Software Bill-of-Materials (SBOM) to Dependency-Track for continuous analysis. Dependency-Track is an intelligent Software Supply Chain Component Analysis platform that allows organizations to identify and reduce risk from the use of third-party and open source components.

Plugin Support Policies

Release Notes

Security Warnings

CSRF vulnerability and missing permission checks allow capturing credentials(last version affected: 3.1.0)

Download Plugin

OWASP Dependency-Track 6.0.1

SHA1:

b4e0d7042e79a60e51aa78b6bcced0701ff30a3f

SHA256:

2ca0581b2df40c1be54b83b048dafd1df0584806af1888f5ab9268203fb83db3

Older versions

Maintainers:

Ronny Perinke

Dependencies:

okhttp-api v4.11.0-183.va_87fc7a_89810 (required)
credentials v1408.va_622a_b_f5b_1b_1 (required)
plain-credentials v183.va_de8f1dd5a_2b_ (required)

All CloudBees CI Plugins