4.14.0

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
8a822e22c6c087b0e46f9478f9b342d2e2bad162  frontend-dist.zip
# SHA256
9a96be982a80c6c8714ad8d22a932d013a6b3593744083d551a7fb2b4a281aa3  frontend-dist.zip
# SHA512
1179ac9a06eccb6b3fd6efc97cf6df38809fe55b139dd0b2027de1696738ea92ca73edd66cb68c64ebc2cc34b5c246fdcfcdf12978e0a313095d7faab8cb2820  frontend-dist.zip

What's Changed

Enhancements 🚀

• Improve German Translation by @fupgang in #1227
• Show collection projects using tag in tag list by @nscuro in #1237
• feat: add suffix to vulnerability locale keys by @setchy in #1276
• chore(i18n-uk): update Ukrainian translations by @illenko in #1287
• feat(ui): add match mode selector to internal component config #1282 by @ch8matt in #1283
• feat: display license id by @setchy in #1311
• Run Dependabot on latest release branch by @nscuro in #1364
• feat(scope): Support for scope mentioned in cyclonedx format. by @anantk24 in #1319
• chore: remove duplicate call to prebuild from package.json by @jkowalleck in #1389
• Repositories Bearer Auth: Make username optional by @valentijnscholten in #1128
• Add OSS Index Base URL configuration field by @brianf in #1431
• feat: Add support for IS_INTERNAL policy condition by @ch8matt in #1394
• Add CVSSv4 support by @nscuro in #1455

Bug Fixes 🐛

• fix: don't duplicate base-path in links by @Aurifi in #1354
• fix(ui): remove policy UUID from tag search endpoint in SelectTagModal by @ch8matt in #1363
• Run welcome message through DOMPurify before rendering it by @nscuro in #1378
• Fix redirect loop when authenticated user is lacking permissions by @nscuro in #1380
• Reseting isDisabled and re-initialize teams when opening create-modal. by @ElenaStroebele in #1410

Dependency Updates 🤖

• build(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by @dependabot[bot] in #1234
• build(deps): bump docker/build-push-action from 6.15.0 to 6.16.0 by @dependabot[bot] in #1233
• build(deps): bump nginxinc/nginx-unprivileged from 1.27.4-alpine@sha256:d43566af1caeaf6d16d4880f587cdeb9e0efe172aad1d1d43ca4ce0fa304e293 to sha256:663d1f83b634d625f3c36b323b21cc5c2c4ed5ebf912a01bfe13cce2f455e92e in /docker by @dependabot[bot] in #1232
• build(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by @dependabot[bot] in #1229
• build(deps): bump nginxinc/nginx-unprivileged from 1.27.4-alpine to 1.27.5-alpine in /docker by @dependabot[bot] in #1238
• build(deps): bump nginxinc/nginx-unprivileged from ad90858 to 9d092c1 in /docker by @dependabot[bot] in #1243
• build(deps): bump nginxinc/nginx-unprivileged from 9d092c1 to b16a09b in /docker by @dependabot[bot] in #1247
• build(deps): bump nginxinc/nginx-unprivileged from b16a09b to 82a240b in /docker by @dependabot[bot] in #1249
• build(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.1 by @dependabot[bot] in #1284
• build(deps): bump nginxinc/nginx-unprivileged from 1.27.5-alpine to 1.29.0-alpine in /docker by @dependabot[bot] in #1290
• build(deps-dev): bump pbkdf2 from 3.1.2 to 3.1.3 by @dependabot[bot] in #1286
• build(deps): bump aquasecurity/trivy-action from 0.30.0 to 0.32.0 by @dependabot[bot] in #1293
• build(deps): bump nginxinc/nginx-unprivileged from 7d08b59 to 7fa831d in /docker by @dependabot[bot] in #1292
• build(deps): bump nginxinc/nginx-unprivileged from 7fa831d to 43e46e2 in /docker by @dependabot[bot] in #1299
• build(deps): bump docker/build-push-action from 6.16.0 to 6.18.0 by @dependabot[bot] in #1260
• build(deps): bump docker/login-action from 3.4.0 to 3.5.0 by @dependabot[bot] in #1301
• build(deps): bump nginxinc/nginx-unprivileged from 43e46e2 to 094aa5b in /docker by @dependabot[bot] in #1307
• build(deps): bump nginxinc/nginx-unprivileged from 1.29.0-alpine to 1.29.1-alpine in /docker by @dependabot[bot] in #1313
• build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @dependabot[bot] in #1308
• build(deps): bump actions/download-artifact from 4.3.0 to 5.0.0 by @dependabot[bot] in #1302
• build(deps): bump aquasecurity/trivy-action from 0.32.0 to 0.33.1 by @dependabot[bot] in #1327
• build(deps): bump nginxinc/nginx-unprivileged from 5fed1af to 7f2bd11 in /docker by @dependabot[bot] in #1323
• build(deps): bump docker/login-action from 3.5.0 to 3.6.0 by @dependabot[bot] in #1343
• build(deps): bump nginxinc/nginx-unprivileged from 1.29.1-alpine to 1.29.2-alpine in /docker by @dependabot[bot] in #1348
• build(deps): bump github/codeql-action from 3 to 4 by @dependabot[bot] in #1347
• build(deps): bump nginxinc/nginx-unprivileged from a9155b2 to 7f26470 in /docker by @dependabot[bot] in #1350
• build(deps): bump actions/setup-node from 4.4.0 to 5.0.0 by @dependabot[bot] in #1330
• build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in #1357
• build(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #1358
• build(deps): bump actions/setup-node from 5.0.0 to 6.0.0 by @dependabot[bot] in #1352
• build(deps): bump nginxinc/nginx-unprivileged from 7f26470 to 34536ff in /docker by @dependabot[bot] in #1351
• build(deps): bump docker/setup-qemu-action from 3.6.0 to 3.7.0 by @dependabot[bot] in #1377
• build(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #1405
• build(deps): bump actions/download-artifact from 6.0.0 to 7.0.0 by @dependabot[bot] in #1404
• build(deps): bump nginxinc/nginx-unprivileged from 1.29.2-alpine to 1.29.3-alpine in /docker by @dependabot[bot] in #1401
• build(deps): bump actions/setup-node from 6.0.0 to 6.1.0 by @dependabot[bot] in #1400
• build(deps): bump actions/checkout from 5.0.0 to 6.0.1 by @dependabot[bot] in #1399
• update dompurify to 3.3.0 by @snieguu in #1395
• build(deps): bump docker/setup-buildx-action from 3.11.1 to 3.12.0 by @dependabot[bot] in #1411
• build(deps): bump nginxinc/nginx-unprivileged from c6ff4f1 to 11cab18 in /docker by @dependabot[bot] in #1407
• build(deps): bump actions/setup-node from 6.1.0 to 6.2.0 by @dependabot[bot] in #1420
• build(deps): bump nginxinc/nginx-unprivileged from 11cab18 to c3b9dd8 in /docker by @dependabot[bot] in #1413
• build(deps): bump nginxinc/nginx-unprivileged from c3b9dd8 to 7445ca3 in /docker by @dependabot[bot] in #1422
• build(deps): bump nginxinc/nginx-unprivileged from 7445ca3 to 0620420 in /docker by @dependabot[bot] in #1426
• build(deps): bump actions/checkout from 6.0.1 to 6.0.2 by @dependabot[bot] in #1430
• build(deps): bump nginxinc/nginx-unprivileged from 0620420 to 5aea7cc in /docker by @dependabot[bot] in #1...

4.13.6

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
525b47c72fb3bdbb675b5c5414319e5f19e43b03  frontend-dist.zip
# SHA256
84440921692e95c88378e1f82738ccea24c2fb038083b42b3f1c98b1f6702a4a  frontend-dist.zip
# SHA512
9ef9a91c8cc4f4e9a95d11189d710a6146ba5bef2d2880b4ba1337ec53dd5eb066e16d77a0d4403e22acfebae7eec99b1bcbbb3686bbd61bd32e0ed6f5b997ce  frontend-dist.zip

What's Changed

Bug Fixes 🐛

• Backport: Don't duplicate base-path in links by @nscuro in #1381
• Backport: Remove policy UUID from tag search endpoint in SelectTagModal by @nscuro in #1382
• Backport: Run welcome message through DOMPurify before rendering it by @nscuro in #1383
• Backport: Fix redirect loop when authenticated user is lacking permissions by @nscuro in #1386

Dependency Updates 🤖

• build(deps): bump nginxinc/nginx-unprivileged from 1.29.1-alpine to 1.29.2-alpine in /docker by @dependabot[bot] in #1365
• build(deps-dev): bump eslint-plugin-vue from 9.24.0 to 9.24.1 by @dependabot[bot] in #1370
• build(deps-dev): bump @babel/core from 7.24.3 to 7.24.9 by @dependabot[bot] in #1368
• build(deps): bump nginxinc/nginx-unprivileged from dd1707e to fb08922 in /docker by @dependabot[bot] in #1373
• build(deps): bump nginxinc/nginx-unprivileged from fb08922 to 2cddd18 in /docker by @dependabot[bot] in #1376

Other Changes

• Backport: Update Ukrainian translations by @nscuro in #1385

Full Changelog: 4.13.5...4.13.6

4.13.5

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
e441f28a656b710766a9fd85360872bc9330d14c  frontend-dist.zip
# SHA256
fb67bf767e2142b72dbd226b984a1faee9e491d108ccfd29860a49e0b5b15a12  frontend-dist.zip
# SHA512
ec9ba943b32ff38b3c8e8c6b4e804a900bcdb1af5ce042cbdf0e03057c2fa6664cce2e367cdd674eace998016a426c0be392e1472a22baa181277d80aa1e57f0  frontend-dist.zip

What's Changed

Dependency Updates 🤖

• Bump NGINX base image to 1.29.1 by @nscuro in #1346

Full Changelog: 4.13.4...4.13.5

4.13.4

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
827522ca8079450a8560a58a1b4e71add0a5d630  frontend-dist.zip
# SHA256
d0e604300d52047c32a98a51aa32e1cf2276525fa81557c4c95f1ad49f30d820  frontend-dist.zip
# SHA512
61289a55c724fd4ddcc41bf6282ecb1c7dcc7925d0fffa7026ef3b2dc4892b27ed8b2614c171d8842ced3bb0a0a7e3255158678ddc730f684060fedcacbb3270  frontend-dist.zip

Full Changelog: 4.13.3...4.13.4

4.13.3

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
5eeea5e7bd1db7c40f45380580518eea7bdc53d7  frontend-dist.zip
# SHA256
f5bdf91803fb99b966f38be60b937adec96036b80bf7a793d32bb51b67f6fd7b  frontend-dist.zip
# SHA512
22967b91d2e6f2715ad14b23f65fc674ba059ee407b96e12672846036e1e882e1c4ad024297ed55f0d1b668992d890f0c787260b5587c349c746f254903879cc  frontend-dist.zip

What's Changed

Dependency Updates 🤖

• Bump NGINX base image to latest digest by @nscuro in #1300

Full Changelog: 4.13.2...4.13.3

4.13.2

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
987a3b3a37fad4143b295ff9a7fcbacef7e915f4  frontend-dist.zip
# SHA256
94fc935e62a657e5f10bff9b9a8657841f0c2f2e53fd234c881580874bb95f14  frontend-dist.zip
# SHA512
d2aa31b7aaf5a06bdce6e4403b946824872993fd719a8551bcc310c2b3e5b64ecb82482fe4035a95d88f7dab37c603800befa865316695d4acba48a691778d97  frontend-dist.zip

Full Changelog: 4.13.1...4.13.2

4.13.1

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
ad0926abed617069934cf198670d7dba4e3f6867  frontend-dist.zip
# SHA256
0ae8950c4aa0713dc52812225720cb27cf2da17d32badcda9c2be8c3872720e6  frontend-dist.zip
# SHA512
f5741100c881a2801f0fd32c1a4ba4596088e72de18e15d2264641c303f2c1829bc6547f64852f7fabec1a3928d5e95a0eed72e8e877d2fd722f94dadaba8eb2  frontend-dist.zip

What's Changed

Enhancements 🚀

• Show collection projects using tag in tag list by @nscuro in #1241

Dependency Updates 🤖

• build(deps): bump nginxinc/nginx-unprivileged from 1.27.4-alpine to 1.27.5-alpine in /docker by @nscuro in #1242

Full Changelog: 4.13.0...4.13.1

4.13.0

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
5f18d23205cff4627ff6330bca9f70f71810da89  frontend-dist.zip
# SHA256
e64676821351096cce62735d28a15b2ae62c4ba66c1b295ab119a9b83f94eef0  frontend-dist.zip
# SHA512
204049470e226b82feceb690ddf3d21eb70433efafa6b2210790c63a43c5bcd46c69f0112a1a9331e2af1b69e998a8300808ca6e5fcb6e3f9acec0b4bf6fd9eb  frontend-dist.zip

What's Changed

Enhancements 🚀

• Add new optional column Classifier in project component view by @2000rosser in #1058
• Added buttons to add/delete/edit the affected Components by @Gepardgame in #1060
• Improved Russian Translation by @WoozyMasta in #1106
• Introduce "collection" projects for better usage of hierarchical view by @rkg-mm in #658
• Label destination input as "Jira project key" for Jira alerts by @nscuro in #1114
• Add timestamp formatting to chart tooltips by @Rudra-Garg in #1152
• Handle new API key format and generation process by @Gepardgame in #1157
• Change API key field clearTextKey to key by @nscuro in #1168
• Add telemetry admin view by @nscuro in #1164
• Add Bluesky link to About dialog by @nscuro in #1188
• Add trivy scanner option UI by @mjwrona in #1209
• Add autocomplete to project collection logic tag dropdown by @jayolee in #1198
• Integrate scheduled alerts into existing alerts views by @nscuro in #1210
• Display last vuln analysis timestamp in project view by @nscuro in #1218

Bug Fixes 🐛

• Fix creation of multiple projects without reloading page by @rkg-mm in #1028
• Fix OIDC users not being displayed in Team view by @Gepardgame in #1034
• Fix state of sidebar not being saved for non-SNAPSHOT versions by @Gepardgame in #1032
• Always display project nodes in dependency graph using name and version by @nscuro in #1048
• Fix caching issues upon upgrade by @nscuro in #1050
• Fix: "Add Version" Create Button Should Be Inactive Until Version Provided by @IdrisGit in #1039
• Fix missing URI encoding of tag names by @nscuro in #1056
• docker: fix ipv6 listening by @rissson in #1063
• fix: breadcrumbs navigation broken for non-english language by @IdrisGit in #1066
• docker: fix ipv6 listening by @rissson in #1078
• Fix tags with special characters breaking the tags table by @nscuro in #1082
• Prefill Team input in Create Project dialog based on user's team membership by @Gepardgame in #1089
• Fix no error being displayed when submitting an invalid welcome message by @Gepardgame in #1091
• Show component properties to users with VIEW_PORTFOLIO permission by @Shortfinga in #1095
• Fix missing URI encoding for vulnerability IDs by @nscuro in #1098
• Port: Fix affected projects tab not being updated when switching between vulnerability aliases by @nscuro in #1135
• Fix broken ordering by SWID Tag ID in component search view by @nscuro in #1154
• Fix column visibility preference not considered for project list by @nscuro in #1169
• Fix policy violation tab indicators being populated incorrectly by @nscuro in #1171
• Fix wrong policy violation tab indicator visibility conditions by @nscuro in #1174
• Fix tag autocomplete dropdown library style overriding issue by @jayolee in #1213
• Fix "show in dependency graph" yielding a 403 error by @nscuro in #1217

Dependency Updates 🤖

• build(deps): bump nginxinc/nginx-unprivileged from 1.27.1-alpine to 1.27.2-alpine in /docker by @dependabot in #1030
• build(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @dependabot in #1029
• build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.1 by @dependabot in #1038
• build(deps): bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #1037
• build(deps): bump aquasecurity/trivy-action from 0.24.0 to 0.25.0 by @dependabot in #1036
• build(deps): bump nginxinc/nginx-unprivileged from 5423958 to cf998f0 in /docker by @dependabot in #1035
• build(deps): bump actions/upload-artifact from 4.4.1 to 4.4.2 by @dependabot in #1041
• build(deps): bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 by @dependabot in #1040
• build(deps): bump actions/upload-artifact from 4.4.2 to 4.4.3 by @dependabot in #1054
• build(deps): bump nginxinc/nginx-unprivileged from cf998f0 to 3377b22 in /docker by @dependabot in #1064
• build(deps): bump aquasecurity/trivy-action from 0.26.0 to 0.28.0 by @dependabot in #1065
• build(deps): bump nginxinc/nginx-unprivileged from 3377b22 to 8096c72 in /docker by @dependabot in #1067
• build(deps): bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #1070
• build(deps): bump actions/setup-node from 4.0.4 to 4.1.0 by @dependabot in #1072
• build(deps): bump nginxinc/nginx-unprivileged from 8096c72 to dbe45a3 in /docker by @dependabot in #1075
• build(deps): bump docker/build-push-action from 6.9.0 to 6.10.0 by @dependabot in #1094
• build(deps): bump aquasecurity/trivy-action from 0.28.0 to 0.29.0 by @dependabot in #1092
• build(deps): bump nginxinc/nginx-unprivileged from 1.27.2-alpine to 1.27.3-alpine in /docker by @dependabot in #1096
• build(deps): bump nginxinc/nginx-unprivileged from 8d20086 to 6097fa6 in /docker by @dependabot in #1107
• build(deps): bump nginxinc/nginx-unprivileged from 6097fa6 to 3092a71 in /docker by @dependabot in #1111
• build(deps): bump docker/setup-qemu-action from 3.2.0 to 3.3.0 by @dependabot in #1132
• build(deps): bump actions/upload-artifact from 4.4.3 to 4.6.0 by @dependabot in #1134
• build(deps): bump docker/build-push-action from 6.10.0 to 6.11.0 by @dependabot in #1133
• build(deps): bump docker/setup-buildx-action from 3.7.1 to 3.8.0 by @dependabot in #1116
• build(deps): bump nginxinc/nginx-unprivileged from 3092a71 to f00bd07 in /docker by @dependabot in #1117
• build(deps): bump nanoid from 3.3.7 to 3.3.8 by @dependabot in #1115
• build(deps): bump nginxinc/nginx-unprivileged from f00bd07 to d532ff0 in /docker by @dependabot in #1137
• build(deps): bump nginxinc/nginx-unprivileged from d532ff0 to 73c290d in /docker by @dependabot in #1138
• build(deps): bump dompurify from 2.4.9 to 2.5.8 by @dependabot in #998
• build(deps): bump docker/build-push-action from 6.11.0 to 6.12.0 by @dependabot in #1140
• build(deps): bump docker/build-push-action from 6.12.0 to 6.13.0 by @dependabot in #1150
• build(deps): bump nginxinc/nginx-unprivileged from 73c290d to 9e7238f in /docker by @dependabot in #1145
• build(deps): bump actions/setup-node from 4.1.0 to 4.2.0 by @d...

4.12.7

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
4d42a3251d35746bb198018fec273b17a91761e6  frontend-dist.zip
# SHA256
8c808d7d4ec2442970e8a79f8bb67b9422a69e377a682a4fe47057e7b0cad642  frontend-dist.zip
# SHA512
ca80e3bf0e204510223dc7cdad76ab23b60be1fafe3005ca77eea05b3c0bc0c9c64ecc419ef9643fc60f315e10856f379a507b55f523b3791a6f5ccb39da59b4  frontend-dist.zip

Full Changelog: 4.12.6...4.12.7

4.12.6

Dependency Track Frontend

For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and upgrade notes.
If additional details are required, consult the closed issues for this release milestone.

# SHA1
118b6fe222bb7192ca15610dd9c0481f055f93b4  frontend-dist.zip
# SHA256
d3cb53bccb46f20f735ac8716e147d6e99bf7a028ecb492b63aa3718167595ff  frontend-dist.zip
# SHA512
e1bded81cdec6808423cd680814d67442e76b72bbc7d7e16d723beaf0d2e3b090b60218fa7717f096679c9aa358c78eea57b590f760ab4e192bc0a2d041b80f6  frontend-dist.zip

What's Changed

Bug Fixes 🐛

• Backport: Fix policy violation tab indicators being populated incorrectly by @nscuro in #1172
• Backport: Fix wrong policy violation tab indicator visibility conditions by @nscuro in #1175

Dependency Updates 🤖

• Bump nginxinc/nginx-unprivileged from 1.27.3-alpine to 1.27.4-alpine by @nscuro in #1173

Full Changelog: 4.12.5...4.12.6