18.9 Planning - Composition Analysis
Useful Links
General info
Theme
We need to focus on roadmap deliverables.
- Period: 10/Jan/2025 - 13/Feb/2026
- Reaction rotation: @hacks4oats @nilieskou (TBD)
Feature
Active Development
| Description | DRI | Due | Notes |
|---|---|---|---|
| 18.8 |
@ifrenkel is supporting Olivier for this deliverable |
||
|
Auto-Remediation with automatic bumping of depe... (&17403 - closed) and Beta: gitlab-org#18236 |
Q1 |
@albi.yusupova Will work with Oscar on this. |
|
| Fallback on scanning manifest files | 18.9 | Finish the spike and start implementing the idea. | |
| Dependency resolution: Building lock/graph files for Java and Python |
@ifrenkel @zmartins will be working on this along with Olivier. |
||
|
Show Malicious Packages as a part of DS Scan re... (gitlab-org#17976 - closed) |
Nick or Orin | Q1 |
@onaaman and @nilieskou will work on this during 18.10 and 18.11. During 18.9 we will try to figure out the details. |
|
License scanning support for Dart/Flutter proje... (gitlab-org#18351 - closed) |
Q1 |
Ahmad will work on this so that he get introduced in PMDB. Nick and Orin will help him along the way to make this his first success |
Maintenance and bugs
Standalone issues
Bugs
---
display: table
fields: title, labels("priority*"), labels("severity*"), labels("Deliverable"), labels("Stretch"), healthStatus, assignees, state
---
label = "group::composition analysis" AND label = "type::bug" AND label != "vulnmapper" AND milestone = "18.9"Other
Feature
---
display: table
fields: title, labels("Deliverable"), labels("Stretch"), labels("workflow::*"), healthStatus, assignees, state
---
label = "type::feature" AND label = "group::composition analysis" AND milestone = "18.9"Maintenance
---
display: table
fields: title, labels("Deliverable"), labels("Stretch") ,labels("workflow::*"), healthStatus, assignees, state
---
label = "type::maintenance" AND label = "group::composition analysis" AND milestone = "18.9" AND label != "docs-only" AND state = opened