Skip to content

Commit 9988eff

Browse files
Lukas FischerWeltraumschaf
Lukas Fischer
authored and
Weltraumschaf
committed
#1901 Add DT projects screenshot to SBOM blogpost
So that the whole article is less of a wall of text and backs up the mentioned numbers, add a screenshot of the projects list in Dependency-Track. Signed-off-by: Lukas Fischer <lukas.fischer@iteratec.com>
1 parent d83625a commit 9988eff

2 files changed

Lines changed: 5 additions & 0 deletions

File tree

documentation/blog/2023-09-15-sbom-part-two-consumption.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -98,6 +98,11 @@ After enabling the GitHub Advisory Database, Dependency-Track reports __87 vulne
9898
It is not trivial to compare by which vulnerabilities this exactly differs, because they often have mutliple identifiers, which can lead to [the same vulnerability getting reported multiple times](https://github.com/DependencyTrack/dependency-track/issues/2181).
9999
The counts of the severity categories also changed, but instead of strictly increasing there were more vulnerabilities of lower severity.
100100

101+
![The Dependency-Track projects overview, showing four projects, two of them with Trivy SBOMs and two with Syft SBOMs, while one each has the GitHub Advisories enabled and the other one has not](/img/blog/2023-09-15-depencytrack-projects.png)
102+
103+
This is what the Dependency-Track dashboard looks like for those four projects, representing different analyses of the Juice Shop image.
104+
Dependency-Track 4.8.2 was used for the tests covered in this blogpost.
105+
101106
#### Others
102107

103108
As an _OWASP_ project, _Dependency-Track_ is a good first choice for an SBOM consumer and shows some of the problems which occur when building a complete SBOM workflow.

documentation/static/img/blog/2023-09-15-depencytrack-projects.png

148 KB
Loading

0 commit comments

Comments
 (0)