Changes for page Dependency-Track

Summary

• Page properties (1 modified, 0 added, 0 removed)

Details

Page properties

Content

...	...	@@ -1,3 +1,5 @@
	1	+STILL UNDER CONSTRUCTION
	2	+
1	1	[[image:logo-dependency-track.YzQAjtqS_Z2pMQkR.webp||alt="Grafana Icon Logo PNG vector in SVG, PDF, AI, CDR format" data-xwiki-image-style-alignment="end" height="52" width="190"]]
2	2
3	3	{{toc/}}
...	...	@@ -4,30 +4,32 @@
4	4
5	5	= Introduction =
6	6
7		-Dependency Track is an open-source Software Composition Analysis (SCA) tool that helps organizations manage and secure their software supply chain. It automatically generates and maintains a Software Bill of Materials (SBOM) for projects, continuously monitoring dependencies for known vulnerabilities. In addition, it tracks license compliance of open-source components, giving teams greater visibility and control. By integrating seamlessly into DevOps and CI/CD pipelines, Dependency-Track makes it easier to embed security throughout the development lifecycle.
	9	+Dependency-Track is an open-source Software Composition Analysis (SCA) tool that helps organizations manage and secure their software supply chain. It automatically generates and maintains a Software Bill of Materials (SBOM) for projects, continuously monitoring dependencies for known vulnerabilities. In addition, it tracks license compliance of open-source components, giving teams greater visibility and control. By integrating seamlessly into DevOps and CI/CD pipelines, Dependency-Track makes it easier to embed security throughout the development lifecycle.
8	8
9	9	[[Vendor Page>>https://dependencytrack.org/]]
10	10
11		-There are several useful resources available to get started with Dependency Track:
	13	+There are several useful resources available to get started with Deptrack:
12	12
13	13	[[Dependency-Track Documentation>>https://docs.dependencytrack.org/]]
14	14
	17	+[[Impact Analysis>>https://docs.dependencytrack.org/usage/impact-analysis/]]
	18	+
15	15	= Accessing Dependency-Track =
16	16
17		-Dependency-Track is integrated into the DevOps-as-a-Service toolchain, but for now it is only available to pilot customers. To get started, a few prerequisites need to be in place.
	21	+Dependency-Track is integrated into the DevOps-as-a-Service toolchain, but for now it’s only offered in the Pilotkunden Preview. To get started, a few prerequisites need to be in place.
18	18
19	19	== Preconditions in DevOps portal to access Dependency-Track ==
20	20
21		-1. A Dependency Track license must be assigned to the user
22		-1. Deptrack must be added to the tool list of the project
	25	+1. A Dependency-Track license must be assigned to the user
	26	+1. Dependency-Track must be added to the tool list of the project
23	23
24	24	(% class="box warningmessage" %)
25	25	(((
26	26	⚠ **Note**
27		-Unlike other tools, login is only possible if the user has a valid license and is assigned a role in at least one Dependency Track project.
	31	+Unlike other tools, login is only possible if the user has a valid license and is assigned a role in at least one Dependency-Track project.
28	28	)))
29	29
30		-After completing the preconditions, a project in Dependency Track, which is part of the DevOps-as-a-Service toolchain, can be accessed via the DevOps Portal or directly through a URL.
	34	+After completing the preconditions, a project in Dependency-Track, which is part of the DevOps-as-a-Service toolchain, can be accessed via the DevOps Portal or directly through a URL.
31	31
32	32	== Via DevOps Portal ==
33	33
...	...	@@ -38,8 +38,7 @@
38	38	(% class="box warningmessage" %)
39	39	(((
40	40	⚠ **Note**
41		-If you are still unable to access your project in Dependency-Track, it may be because you are logged in with an old session that still uses outdated permissions or To resolve this issue, please log out and then log in again.
42		-For some reason, you may need to click more than one option in OpenID or trigger the login section ([[https:~~/~~/deptrack-<customer~>.devops.t-systems.net/>>https://<customer>.devops.t-systems.net/xwiki/wiki/<pkey>/view]]login) to access the new session.
	45	+If you are still unable to access your project in Dependency-Track, it may be because you are logged in with an old session that still uses outdated permissions or To resolve this issue, please log out and then log in again:
43	43	\\[[image:login1.png||alt="Untitled2.png" height="250" width="600"]]
44	44	)))
45	45
...	...	@@ -92,7 +92,7 @@
92	92	Dependency‑Track offers a robust auditing workflow: you can triage findings on individual projects, add comments, and record analysis decisions. The platform logs a complete audit trail for each action. Users with the VULNERABILITY_ANALYSIS permission can perform these audits, and audit histories are visible to anyone with the VIEW_VULNERABILITY permission.
93	93
94	94	(% class="wikigeneratedid" %)
95		-You can explore the [[Auditing Basics>>https://docs.dependencytrack.org/triage/auditing-basics/]] section in the Dependency‑Track documentation for deeper insights.
	98	+You can explore the Auditing Basics section in the Dependency‑Track documentation for deeper insights.
96	96
97	97	== Impact Analysis ==
98	98
...	...	@@ -100,7 +100,7 @@
100	100	Dependency‑Track enables organizations to assess how a vulnerability affects their environment. If a vulnerability is published in a supported datasource (e.g., NVD, GitHub Advisories, OSS Index, VulnDB), the platform dynamically identifies all affected projects. This allows you to answer: "What is affected?" and "Where am I affected?" at a glance.
101	101
102	102	(% class="wikigeneratedid" %)
103		-You can explore the [[Impact Analysis >>https://docs.dependencytrack.org/usage/impact-analysis/]]section in the Dependency‑Track documentation for deeper insights.
	106	+You can explore the Impact Analysis section in the Dependency‑Track documentation for deeper insights.
104	104
105	105	== Analysis States ==
106	106