OWASP Dependency-Track

CloudBees CIVersion: 6.0.0

Tier 3: Community

Plugin ID: dependency-track

Minimum Jenkins required: 2.479.1

Last released: 2 months, 3 days ago

This plug-in publishes Software Bill-of-Materials (SBOM) to Dependency-Track for continuous analysis. Dependency-Track is an intelligent Software Supply Chain Component Analysis platform that allows organizations to identify and reduce risk from the use of third-party and open source components.

Plugin Support Policies

Release Notes

Security Warnings

CSRF vulnerability and missing permission checks allow capturing credentials(last version affected: 3.1.0)

Download Plugin

OWASP Dependency-Track 6.0.0

SHA1:

9ae04bbaa04a39037044e8a024e9ca17f361bf14

SHA256:

233c4a1f88015a3a151bc4f6da20d712629c1b121060ec3593e24366044cfd83

Older versions

Maintainers:

Ronny Perinke

Dependencies:

okhttp-api v4.11.0-183.va_87fc7a_89810 (required)
credentials v1405.vb_cda_74a_f8974 (required)
plain-credentials v183.va_de8f1dd5a_2b_ (required)

All CloudBees CI Plugins