Update Dependency List endpoints to use the SBOM component list service
Why are we doing this work
This issue ensures that the api endpoints for retrieving dependency list data are able to use the sbom component list service as a data source.
Non-functional requirements
-
Ensure Dependency List qa test works without changes whether the feature flag is on or not.
Implementation plan
There are 2 endpoints to update with conditional logic. Based on the feature flag ff_use_sbom_dependency_data the endpoint will select the dependency list data source (Security::DependencyListService vs sbom component list service).
-
update api endpoint ee/lib/api/dependencies.rb -
update controller ee/app/controllers/projects/dependencies_controller.rb- !109535 (closed)
Verification steps
Edited by Brian Williams