4.13.0

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
5f18d23205cff4627ff6330bca9f70f71810da89  frontend-dist.zip
# SHA256
e64676821351096cce62735d28a15b2ae62c4ba66c1b295ab119a9b83f94eef0  frontend-dist.zip
# SHA512
204049470e226b82feceb690ddf3d21eb70433efafa6b2210790c63a43c5bcd46c69f0112a1a9331e2af1b69e998a8300808ca6e5fcb6e3f9acec0b4bf6fd9eb  frontend-dist.zip

What's Changed

Enhancements 🚀

• Add new optional column Classifier in project component view by @2000rosser in #1058
• Added buttons to add/delete/edit the affected Components by @Gepardgame in #1060
• Improved Russian Translation by @WoozyMasta in #1106
• Introduce "collection" projects for better usage of hierarchical view by @rkg-mm in #658
• Label destination input as "Jira project key" for Jira alerts by @nscuro in #1114
• Add timestamp formatting to chart tooltips by @Rudra-Garg in #1152
• Handle new API key format and generation process by @Gepardgame in #1157
• Change API key field clearTextKey to key by @nscuro in #1168
• Add telemetry admin view by @nscuro in #1164
• Add Bluesky link to About dialog by @nscuro in #1188
• Add trivy scanner option UI by @mjwrona in #1209
• Add autocomplete to project collection logic tag dropdown by @jayolee in #1198
• Integrate scheduled alerts into existing alerts views by @nscuro in #1210
• Display last vuln analysis timestamp in project view by @nscuro in #1218

Bug Fixes 🐛

• Fix creation of multiple projects without reloading page by @rkg-mm in #1028
• Fix OIDC users not being displayed in Team view by @Gepardgame in #1034
• Fix state of sidebar not being saved for non-SNAPSHOT versions by @Gepardgame in #1032
• Always display project nodes in dependency graph using name and version by @nscuro in #1048
• Fix caching issues upon upgrade by @nscuro in #1050
• Fix: "Add Version" Create Button Should Be Inactive Until Version Provided by @IdrisGit in #1039
• Fix missing URI encoding of tag names by @nscuro in #1056
• docker: fix ipv6 listening by @rissson in #1063
• fix: breadcrumbs navigation broken for non-english language by @IdrisGit in #1066
• docker: fix ipv6 listening by @rissson in #1078
• Fix tags with special characters breaking the tags table by @nscuro in #1082
• Prefill Team input in Create Project dialog based on user's team membership by @Gepardgame in #1089
• Fix no error being displayed when submitting an invalid welcome message by @Gepardgame in #1091
• Show component properties to users with VIEW_PORTFOLIO permission by @Shortfinga in #1095
• Fix missing URI encoding for vulnerability IDs by @nscuro in #1098
• Port: Fix affected projects tab not being updated when switching between vulnerability aliases by @nscuro in #1135
• Fix broken ordering by SWID Tag ID in component search view by @nscuro in #1154
• Fix column visibility preference not considered for project list by @nscuro in #1169
• Fix policy violation tab indicators being populated incorrectly by @nscuro in #1171
• Fix wrong policy violation tab indicator visibility conditions by @nscuro in #1174
• Fix tag autocomplete dropdown library style overriding issue by @jayolee in #1213
• Fix "show in dependency graph" yielding a 403 error by @nscuro in #1217

Dependency Updates 🤖

• build(deps): bump nginxinc/nginx-unprivileged from 1.27.1-alpine to 1.27.2-alpine in /docker by @dependabot in #1030
• build(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @dependabot in #1029
• build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.1 by @dependabot in #1038
• build(deps): bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #1037
• build(deps): bump aquasecurity/trivy-action from 0.24.0 to 0.25.0 by @dependabot in #1036
• build(deps): bump nginxinc/nginx-unprivileged from 5423958 to cf998f0 in /docker by @dependabot in #1035
• build(deps): bump actions/upload-artifact from 4.4.1 to 4.4.2 by @dependabot in #1041
• build(deps): bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 by @dependabot in #1040
• build(deps): bump actions/upload-artifact from 4.4.2 to 4.4.3 by @dependabot in #1054
• build(deps): bump nginxinc/nginx-unprivileged from cf998f0 to 3377b22 in /docker by @dependabot in #1064
• build(deps): bump aquasecurity/trivy-action from 0.26.0 to 0.28.0 by @dependabot in #1065
• build(deps): bump nginxinc/nginx-unprivileged from 3377b22 to 8096c72 in /docker by @dependabot in #1067
• build(deps): bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #1070
• build(deps): bump actions/setup-node from 4.0.4 to 4.1.0 by @dependabot in #1072
• build(deps): bump nginxinc/nginx-unprivileged from 8096c72 to dbe45a3 in /docker by @dependabot in #1075
• build(deps): bump docker/build-push-action from 6.9.0 to 6.10.0 by @dependabot in #1094
• build(deps): bump aquasecurity/trivy-action from 0.28.0 to 0.29.0 by @dependabot in #1092
• build(deps): bump nginxinc/nginx-unprivileged from 1.27.2-alpine to 1.27.3-alpine in /docker by @dependabot in #1096
• build(deps): bump nginxinc/nginx-unprivileged from 8d20086 to 6097fa6 in /docker by @dependabot in #1107
• build(deps): bump nginxinc/nginx-unprivileged from 6097fa6 to 3092a71 in /docker by @dependabot in #1111
• build(deps): bump docker/setup-qemu-action from 3.2.0 to 3.3.0 by @dependabot in #1132
• build(deps): bump actions/upload-artifact from 4.4.3 to 4.6.0 by @dependabot in #1134
• build(deps): bump docker/build-push-action from 6.10.0 to 6.11.0 by @dependabot in #1133
• build(deps): bump docker/setup-buildx-action from 3.7.1 to 3.8.0 by @dependabot in #1116
• build(deps): bump nginxinc/nginx-unprivileged from 3092a71 to f00bd07 in /docker by @dependabot in #1117
• build(deps): bump nanoid from 3.3.7 to 3.3.8 by @dependabot in #1115
• build(deps): bump nginxinc/nginx-unprivileged from f00bd07 to d532ff0 in /docker by @dependabot in #1137
• build(deps): bump nginxinc/nginx-unprivileged from d532ff0 to 73c290d in /docker by @dependabot in #1138
• build(deps): bump dompurify from 2.4.9 to 2.5.8 by @dependabot in #998
• build(deps): bump docker/build-push-action from 6.11.0 to 6.12.0 by @dependabot in #1140
• build(deps): bump docker/build-push-action from 6.12.0 to 6.13.0 by @dependabot in #1150
• build(deps): bump nginxinc/nginx-unprivileged from 73c290d to 9e7238f in /docker by @dependabot in #1145
• build(deps): bump actions/setup-node from 4.1.0 to 4.2.0 by @d...

4.12.7

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
4d42a3251d35746bb198018fec273b17a91761e6  frontend-dist.zip
# SHA256
8c808d7d4ec2442970e8a79f8bb67b9422a69e377a682a4fe47057e7b0cad642  frontend-dist.zip
# SHA512
ca80e3bf0e204510223dc7cdad76ab23b60be1fafe3005ca77eea05b3c0bc0c9c64ecc419ef9643fc60f315e10856f379a507b55f523b3791a6f5ccb39da59b4  frontend-dist.zip

Full Changelog: 4.12.6...4.12.7

4.12.6

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
118b6fe222bb7192ca15610dd9c0481f055f93b4  frontend-dist.zip
# SHA256
d3cb53bccb46f20f735ac8716e147d6e99bf7a028ecb492b63aa3718167595ff  frontend-dist.zip
# SHA512
e1bded81cdec6808423cd680814d67442e76b72bbc7d7e16d723beaf0d2e3b090b60218fa7717f096679c9aa358c78eea57b590f760ab4e192bc0a2d041b80f6  frontend-dist.zip

What's Changed

Bug Fixes 🐛

• Backport: Fix policy violation tab indicators being populated incorrectly by @nscuro in #1172
• Backport: Fix wrong policy violation tab indicator visibility conditions by @nscuro in #1175

Dependency Updates 🤖

• Bump nginxinc/nginx-unprivileged from 1.27.3-alpine to 1.27.4-alpine by @nscuro in #1173

Full Changelog: 4.12.5...4.12.6

4.12.5

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
4be2ae18d5a09116272cf608cf32b9d0cf3550b5  frontend-dist.zip
# SHA256
5ddcca1d95fb7fc39110c866ad943353f6515538b3a6408478df8805823e45fa  frontend-dist.zip
# SHA512
4e13b8a9fd264207744e8cbdc54052dff1839d5ff6240da0d4f7e22f26a11fa04e5fb0d8b9dbc617e26177bfb1e4b073684632ee7d69cdd30faf1bf0af712f16  frontend-dist.zip

Full Changelog: 4.12.4...4.12.5

4.12.4

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
182da8ebc1cde3a5ca89db6649afdd19be4f63a4  frontend-dist.zip
# SHA256
bf2cb6079d36b113645f4c9dd31441bbcdd188b7a003f05947569007ff9d4713  frontend-dist.zip
# SHA512
6be662192358ab143252a9df13b6a19a2b2c4c9e0bbb6d38976e2af91dbeb30bebcc2dc641de825a0deb03ac47d650dfbf37224ef015c4866270f7f4c7f7db2a  frontend-dist.zip

What's Changed

Bug Fixes 🐛

• Backport: Fix broken ordering by SWID Tag ID in component search view by @nscuro in #1155

Full Changelog: 4.12.3...4.12.4

4.12.3

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
40e7690e3194ebf7d047a0058fa6f1d7166505ee  frontend-dist.zip
# SHA256
40e0d81013f2713c66a7aee661881cac896091a58520c7a020f0515e9c347694  frontend-dist.zip
# SHA512
e8a718842ded8d07f24b7bfe50d674b56a10b9bafc39bc4fe98ddf59c0c4440657240dc911494aacd4cbfbc1404dd742322746807c09b77ccd32417570f6c8c8  frontend-dist.zip

What's Changed

Enhancements 🚀

• Backport: Add buttons to add/delete/edit Affected Components of internal vulnerabilities by @Gepardgame in #1113

Bug Fixes 🐛

• Backport: Prefill Team input in Create Project dialog based on user's team membership by @nscuro in #1110
• Fix affected projects tab not being updated when switching between vulnerability aliases by @sephiroth-j in #509
• Backport: Bump dompurify from 2.4.9 to 2.5.8 by @nscuro in #1144

Dependency Updates 🤖

• Bump nginx-unprivileged base image to latest digest by @nscuro in #1149

Full Changelog: 4.12.2...4.12.3

4.12.2

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
b1e520a4aa0d3a3dc65aa5ab7da93b81c84edf43  frontend-dist.zip
# SHA256
0a8790def4abe6ab3c5294928cc816a266c2b746ec39b0c1f140b8a2f4c0ad74  frontend-dist.zip
# SHA512
f1ed1206b3dcbc93cb7c671126fdec7172d96a17a72cd62242d2c12379ead81b1aee9497d3c5e66a7c779d385992e50fbc79c183a47b6cc16a2a968ec938313e  frontend-dist.zip

What's Changed

Enhancements 🚀

• Backport: Improve russian translation by @nscuro (original change by @WoozyMasta) in #1109

Bug Fixes 🐛

• Backport: Fix no error being displayed when submitting an invalid welcome message by @nscuro (original change by @Gepardgame) in #1099
• Backport: Fix broken NGINX IPv6 listening by @nscuro (original change by @rissson) in #1101
• Backport: Fix tags with special characters breaking the tags table by @nscuro in #1100
• Backport: Show component properties to users with VIEW_PORTFOLIO permission by @nscuro (original change by @Shortfinga) in #1102
• Backport: Fix missing URI encoding for vulnerability IDs by @nscuro in #1103

Dependency Updates 🤖

• Bump nginxinc/nginx-unprivileged to 1.27.3-alpine by @nscuro in #1108

Full Changelog: 4.12.1...4.12.2

4.12.1

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
23c991a3540da5fc3c08fbcebc3c1b7bd3801402  frontend-dist.zip
# SHA256
22f1a73db7df0340bb6d75042bfeb73ed375fc5659b4d609844763111bea4c81  frontend-dist.zip
# SHA512
3b34b2d594434b054fdbe65747a24addabd054ca167d93056a9def14ffe3c06f9ac0822da202370ec017ce748fb74300e63a0571d0792a1f062a83d3141292b2  frontend-dist.zip

What's Changed

Bug Fixes 🐛

• Backport: Fix state of sidebar not being saved for non-SNAPSHOT versions by @nscuro (original change by @Gepardgame) in #1044
• Backport: Fix OIDC users not being displayed in Team view by @nscuro (original change by @Gepardgame) in #1045
• Backport: Fix creation of multiple projects without reloading page by @nscuro (original change by @rkg-mm) in #1046
• Backport: Always display project nodes in dependency graph using name and version by @nscuro in #1049
• Backport: Fix caching issues upon upgrade by @nscuro in #1051
• Backport: Fix: "Add Version" Create Button Should Be Inactive Until Version Provided by @nscuro (original change by @IdrisGit) in #1052
• Backport: Fix missing URI encoding of tag names by @nscuro in #1057
• Backport: Fix breadcrumbs navigation being broken for non-english languages by @nscuro (original change by @IdrisGit) in #1068
• Backport: Fix NGINX ipv6 listening by @nscuro (original change by @rissson) in #1069

Dependency Updates 🤖

• Bump nginxinc/nginx-unprivileged to 1.27.2-alpine by @nscuro in #1074

Other Changes

• Backport: Add .gitattributes to fix prettier behavior on Windows by @nscuro in #1043

Full Changelog: 4.12.0...4.12.1

4.12.0

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
312dd2186deb81e50da00f2d42888711352f7853  frontend-dist.zip
# SHA256
589eb0aae9a3fbdfde4bdd4dda000a2fb6e08a27e66a52ef9b17c1eaa022d46e  frontend-dist.zip
# SHA512
98f5391fbae0135f64ac66587709d467e0b0f3ec489e50f2360a9194973caa0a7c709105fd9df24a07244ebf7cac1d39c6c82170e041440efa9bb2a86870fee0  frontend-dist.zip

What's Changed

Enhancements 🚀

• Distinguish Between Active And Inactive Project Versions by @aravindparappil46 in #862
• Improve Japanese translation by @tiwatsuka in #868
• Add database name and version to About dialog by @nscuro in #870
• Show Badge For Inactive Projects by @aravindparappil46 in #872
• Add BOM_VALIDATION_FAILED To Notification Group by @aravindparappil46 in #886
• i18n: improve chinese localization quality by @zeed-w-beez in #892
• i18n: Improve German Translation #890 by @fupgang in #898
• Configure prettier to sort JSON files by @nscuro in #902
• Sort Components Vulnerabilities by Severity or CWE by @fupgang in #907
• Add tag management view by @nscuro in #922
• Make tagged project names clickable by @nscuro in #923
• Add ability to delete tags and untag projects by @nscuro in #928
• Feature: add support for serving from custom path by @Squixx in #801
• add EPSS score to policies by @2000rosser in #930
• Add autocomplete support for tag inputs by @nscuro in #936
• Fix usage of deprecated policy tagging endpoints, and add ability to untag policies from Tags view by @nscuro in #937
• French translation update by @molusk in #957
• feat(components): quick search for projects also using component by @setchy in #848
• Add ability to test notification publishers by @2000rosser in #949
• fix: Fix some translations in spanish by @JCHacking in #971
• feat: dynamic policy violation badges based on show suppressed flag by @setchy in #810
• Add "limit to tags" option for alerts by @nscuro in #980
• Support inclusion/exclusion of projects from BOM validation with tags by @nscuro in #981
• feat/Save Sidebar state in local storage by @Gepardgame in #988
• Feat/customizable login page by @Gepardgame in #986
• Feat/get message when updating by @Gepardgame in #990
• Feat: Systemwide Default Language by @Gepardgame in #992
• Confirmation prompt for project deletion by @Gepardgame in #996
• Global Audit View: Policy Violations by @rbt-mm in #772
• Feat/add team selection in create project button by @Gepardgame in #975
• Adding functionality to download component table data as a csv by @nvcastelli in #993
• Introduce isLatest project flag & allow policies to be limited to latest version by @rkg-mm in #1017
• Deprecate "Enable SVG Badge support (unauthenticated)" by renaming by @SaberStrat in #1019

Bug Fixes 🐛

• Restrict Height Of Project Versions Dropdown by @aravindparappil46 in #861
• Bind i18n Object To SeverityProgressBar Props by @aravindparappil46 in #871
• Remove BOM processing V2 toggle by @nscuro in #946
• Fix links with href="#" being pushed to Vue router by @nscuro in #1012

Dependency Updates 🤖

• build(deps): bump aquasecurity/trivy-action from 0.19.0 to 0.20.0 by @dependabot in #859
• build(deps): bump nginxinc/nginx-unprivileged from 0480c2b to 57e667f in /docker by @dependabot in #866
• build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #874
• build(deps): bump nginxinc/nginx-unprivileged from 57e667f to 5b42062 in /docker by @dependabot in #875
• build(deps): bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 by @dependabot in #876
• build(deps): bump docker/login-action from 3.1.0 to 3.2.0 by @dependabot in #881
• build(deps): bump nginxinc/nginx-unprivileged from 5b42062 to 8265b1d in /docker by @dependabot in #879
• build(deps): bump nginxinc/nginx-unprivileged from 1.25.5-alpine to 1.27.0-alpine in /docker by @dependabot in #888
• build(deps): bump nginxinc/nginx-unprivileged from eefb989 to 36801d1 in /docker by @dependabot in #889
• build(deps): bump aquasecurity/trivy-action from 0.21.0 to 0.22.0 by @dependabot in #891
• build(deps): bump nginxinc/nginx-unprivileged from 36801d1 to 2de52e9 in /docker by @dependabot in #893
• build(deps): bump docker/build-push-action from 5.3.0 to 5.4.0 by @dependabot in #894
• build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #899
• build(deps): bump nginxinc/nginx-unprivileged from 2de52e9 to 2c05723 in /docker by @dependabot in #906
• build(deps): bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 by @dependabot in #905
• build(deps-dev): bump ws from 6.2.2 to 6.2.3 by @dependabot in #908
• build(deps): bump docker/build-push-action from 5.4.0 to 6.0.0 by @dependabot in #904
• build(deps): bump docker/build-push-action from 6.0.0 to 6.0.1 by @dependabot in #910
• build(deps): bump docker/build-push-action from 6.0.1 to 6.0.2 by @dependabot in #916
• build(deps): bump docker/build-push-action from 6.0.2 to 6.1.0 by @dependabot in #921
• build(deps): bump docker/build-push-action from 6.1.0 to 6.2.0 by @dependabot in #924
• build(deps): bump nginxinc/nginx-unprivileged from 2c05723 to c1ed79a in /docker by @dependabot in #926
• build(deps): bump nginxinc/nginx-unprivileged from c1ed79a to c7e34c1 in /docker by @dependabot in #929
• build(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 by @dependabot in #931
• build(deps): bump docker/build-push-action from 6.2.0 to 6.3.0 by @dependabot in #932
• build(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @dependabot in #934
• build(deps): bump actions/download-artifact from 4.1.7 to 4.1.8 by @dependabot in #938
• build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in #939
• build(deps): bump nginxinc/nginx-unprivileged from c7e34c1 to 0afff08 in /docker by @dependabot in #942
• build(deps): bump actions/setup-node from 4.0.2 to 4.0.3 by @dependabot in #944
• build(deps): bump aquasecurity/trivy-action from 0.23.0 to 0.24.0 by @dependabot in #945
• build(deps): bump nginxinc/nginx-unprivileged from 0afff08 to 8f14986 in /docker by @dependabot in #947
• build(deps): bump docker/build-push-action from 6.3.0 to 6.4.0 by @dependabot in #948
• Bump bootstrap-table to 1.22.6 by @nscuro in #950
• build(deps): bump docker/bui...

4.11.7

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
f481a9fca8e9f1eca7693cd638eef0eb5a1ed5a2  frontend-dist.zip
# SHA256
332cc69c102c3df90f41c10687b78553dfb8bf6a66ffb6236f97d24fc932b2b7  frontend-dist.zip
# SHA512
3f3dc4b62a2b1f4e3ad7f856ea3f88f16d52858a4514482ee50a74b882ae7941f54a3ac9680571f74b4d15f0cc910b54f2d31f4acfc426d7ce17bd990e97ca0d  frontend-dist.zip

Full Changelog: 4.11.6...4.11.7