@adelosrios/plugin-dependencytrack
v0.2.9
Published
Thanks for using our plugin created for retrieving OWASP's Dependencytrack information in Backstage. This plugin is still in development.
Downloads
3
Readme
Dependencytrack plugin
Thanks for using our plugin created for retrieving OWASP's Dependencytrack information in Backstage. This plugin is still in development.
Installation
Run this command from the app
package directory:
yarn add @adelosrios/plugin-dependencytrack
Configuration
Configuring the service
Add config in app-config.yaml
.
Integration:
dependencytrack:
baseUrl: <DEPENDENCYTRACK_INSTANCE_URL>
Proxy:
proxy:
'/dependencytrack':
target: <DEPENDENCYTRACK_API_URL>
allowedMethods: ['GET']
headers:
X-Api-Key: '<DEPENDENCYTRACK_API_KEY>'
Don't forget to replace the placeholders identified by the carets.
Add cards to overview tab
// packages\app\src\components\catalog\EntityPage.tsx
import { EntityDependencytrackSummaryCard, EntityDependencytrackFindingCard, isDependencytrackAvailable } from '@adelosrios/plugin-dependencytrack';
// In the overviewContent. You can add one or both.
// Metrics card
<EntitySwitch>
<EntitySwitch.Case if={isDependencytrackAvailable}>
<Grid item md={6}>
<EntityDependencytrackSummaryCard/>
</Grid>
</EntitySwitch.Case>
</EntitySwitch>
// Findings card
<EntitySwitch>
<EntitySwitch.Case if={isDependencytrackAvailable}>
<Grid item md={12}>
<EntityDependencytrackFindingCard/>
</Grid>
</EntitySwitch.Case>
</EntitySwitch>
Add to catalog-info.yaml
Add dependencytrack/project-name-version
to your catalog-info.yaml
:
# Example catalog-info.yaml entity definition file
apiVersion: backstage.io/v1alpha1
kind: Component
metadata:
# ...
annotations:
dependencytrack/project-name-version: <projectName:projectVersion> # solar:3.0