-
Add SBoM ingestion service processing 1 of 1 checklist item completed!92583 15.5Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern featureaddition groupthreat insights missed:15.3 missed:15.4 releasedcandidate sectionsec typefeature workflowpost-deploy-db-staging
- Merged
- 32
- Approved
updated -
Add sbom_occurrences table and model 1 of 1 checklist item completed!90814 15.2Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Data WarehouseNot Impacted SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend database database-testing-automation databaseapproved devopsgovern documentation featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 46
- Approved
updated -
Add sbom_sources table and model 0 of 1 checklist item completed!90812 15.2Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Data WarehouseNot Impacted SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend database database-testing-automation databaseapproved devopsgovern featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 39
- Approved
updated -
Add SBoM Component tables and models 1 of 1 checklist item completed!90809 15.2Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Data WarehouseNot Impacted SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend database database-testing-automation databaseapproved devopsgovern featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowproduction
- Merged
- 23
- Approved
updated -
Add worker for ingesting SBoM reports 0 of 1 checklist item completed!92277 15.3Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern feature flag featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 35
- Approved
updated -
Add data structures for SBoM report parsing 1 of 1 checklist item completed!92813 15.3Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 49
- Approved
updated -
Add CycloneDX report validation 1 of 1 checklist item completed!92823 15.3Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowproduction
- Merged
- 25
- Approved
updated -
Add parser for CycloneDX properties 1 of 1 checklist item completed!93219 15.3Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 42
- Approved
updated -
Allow Sbom::Occurence.component_version to be nullable 1 of 1 checklist item completed!93293 15.3Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Data WarehouseNot Impacted SCA:Dependency Scanning WorkingGroupContinuousScanning backend database database-testing-automation databaseapproved devopsgovern groupsecurity policies maintenancerefactor releasedpublished sectionsec typemaintenance workflowproduction
- Merged
- 30
- Approved
updated -
Add file format adapter for zip 1 of 1 checklist item completed!94107 15.3Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 42
- Approved
updated -
Add cyclonedx to pipeline validation schema 1 of 1 checklist item completed!94241 15.3Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Enterprise Edition GitLab Ultimate SCA:Dependency Scanning Software Bill of Materials (SBoM) WorkingGroupContinuousScanning backend devopsgovern featureaddition frontend groupcomposition analysis missed:15.2 releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 21
- Approved
updated -
Initialize SBoM report data structures via caller 1 of 1 checklist item completed!95847 15.4Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern groupsecurity policies maintenancerefactor releasedpublished sectionsec typemaintenance workflowpost-deploy-db-production
- Merged
- 13
- Approved
updated -
Change CycloneDX artifacts to gzip 1 of 1 checklist item completed!96285 15.4Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend bugfunctional devopsgovern groupsecurity policies releasedpublished sectionsec typebug workflowpost-deploy-db-staging
- Merged
- 9
- Approved
updated -
Add SBoM ingestion tasks 1 of 1 checklist item completed!96575 15.5Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Data WarehouseNot Impacted SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend database database-testing-automation databaseapproved devopsgovern featureaddition groupthreat insights missed:15.4 releasedpublished sectionsec typefeature workflowpost-deploy-db-staging
- Merged
- 68
- Approved
updated -
Add validation for CVSS V3 vector strings 1 of 1 checklist item completed
- Merged
- 21
- Approved
updated -
Add vulnerability_advisories and sbom_vulnerable_component_versions tables 1 of 1 checklist item completed!95622 15.4Data WarehouseNot Impacted GitLab Ultimate WorkingGroupContinuousScanning auto updated automation:ml automation:ml wrong backend database database-testing-automation databaseapproved devopsgovern documentation featureaddition groupsecurity policies releasedcandidate sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 57
- Approved
updated -
Add functionality for retrieving sbom reports from pipeline 1 of 1 checklist item completed
- Merged
- 27
- Approved
updated -
Move bulk ingestion tasks to generic locations 1 of 1 checklist item completed
- Merged
- 16
- Approved
updated