Replies: 1 comment
-
|
It doesn't affect Dependency-Track's side of the integration, as it merely calls the API of a Trivy server that users operate. So if you're running Trivy, it's up to you to handle it appropriately. As for Trivy usage in Dependency-Track's own CI/CD infra, we addressed that here: #5951 |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi all,
A new security vulnerability has been disclosed in Trivy. Does this affect the Trivy analyzer that is part of Dependency Track in any way?
Beta Was this translation helpful? Give feedback.
All reactions