OWASP WebGoat project support: Dependency Scanning
Problem to solve
See detailed information in &839 (closed).
This issue is focusing on Dependency Scanning.
Target audience
- Sam, Security Analyst, https://design.gitlab.com/research/personas#persona-sam
Proposal
Ensure that our Dependency Scanning tool works correctly with the OWASP WebGoat project. Check if results are aligned with other products.
Designs
- Show closed items
Relates to
Activity
-
Newest first Oldest first
-
Show all activity Show comments only Show history only
- Fabio Busatto added Category:Dependency Scanning [DEPRECATED] analysts devopssecure + 1 deleted label
added Category:Dependency Scanning [DEPRECATED] analysts devopssecure + 1 deleted label
- Author Contributor
- Fabio Busatto added to epic &839 (closed)
added to epic &839 (closed)
- Fabio Busatto changed milestone to %11.11
changed milestone to %11.11
- 🤖 GitLab Bot 🤖 added [deprecated] Accepting merge requests label
added [deprecated] Accepting merge requests label
- Philippe Lafoucrière marked this issue as related to #6425 (closed)
marked this issue as related to #6425 (closed)
- Developer
- Developer
FYI, the job is currently failing: https://gitlab.com/gitlab-org/security-products/tests/webgoat/-/jobs/188052799 This is because we need to run
mvn install
first to have the required jars. - Author Contributor
@plafoucriere I'm retrying the job now that https://gitlab.com/gitlab-org/gitlab-ee/issues/6425 is done.
https://gitlab.com/gitlab-org/security-products/tests/webgoat/-/jobs/190544265
- Thomas Woodham added Stretch label
added Stretch label
- Fabio Busatto marked this issue as related to gitlab-com/Product#212 (closed)
marked this issue as related to gitlab-com/Product#212 (closed)
- Tanya Pazitny changed milestone to %12.0
changed milestone to %12.0
- Kenny Johnston added Deliverable label and removed Stretch label
added Deliverable label and removed Stretch label
- Olivier Gonzalez added 1 deleted label
added 1 deleted label
- Tanya Pazitny assigned to @asoborov
assigned to @asoborov
- Maintainer
Thanks for working on this @asoborov! We've removed the ~"Accepting merge requests" label to avoid having multiple people working on the same issue.
- 🤖 GitLab Bot 🤖 removed [deprecated] Accepting merge requests label
removed [deprecated] Accepting merge requests label
- Aleksandr Soborov mentioned in merge request gitlab-org/security-products/analyzers/gemnasium-maven!10 (closed)
mentioned in merge request gitlab-org/security-products/analyzers/gemnasium-maven!10 (closed)
- Maintainer
This issue has passed the feature freeze date and considered a missed-deliverable. Adding missed:12.0.
- 🤖 GitLab Bot 🤖 added missed-deliverable missed:12.0 labels
added missed-deliverable missed:12.0 labels
- 🤖 GitLab Bot 🤖 mentioned in issue gl-retrospectives/secure#3 (closed)
mentioned in issue gl-retrospectives/secure#3 (closed)
- 🤖 GitLab Bot 🤖 mentioned in issue #12709 (closed)
mentioned in issue #12709 (closed)
- 🤖 GitLab Bot 🤖 changed milestone to %12.3
changed milestone to %12.3
- Maintainer
- 🤖 GitLab Bot 🤖 changed milestone to %12.1
changed milestone to %12.1
- Tanya Pazitny added Quality label
added Quality label
- 🤖 GitLab Bot 🤖 mentioned in issue #13044 (closed)
mentioned in issue #13044 (closed)
- 🤖 GitLab Bot 🤖 changed milestone to %12.2
changed milestone to %12.2
- 🤖 GitLab Bot 🤖 added missed:12.1 label
added missed:12.1 label
- Maintainer
Setting ~"group::software composition analysis" based on ~"dependency scanning".
- 🤖 GitLab Bot 🤖 added groupcomposition analysis label
added groupcomposition analysis label
- Contributor
This is now working with gitlab-org/security-products/tests/webgoat!7 (merged)
- Aleksandr Soborov closed
closed
- 🤖 GitLab Bot 🤖 mentioned in issue gl-retrospectives/secure#5 (closed)
mentioned in issue gl-retrospectives/secure#5 (closed)
- 🤖 GitLab Bot 🤖 added Enterprise Edition label
added Enterprise Edition label
- Lukas Eipert removed 1 deleted label
removed 1 deleted label