Would it be possible to add the logic and webhooks for DependencyTrack to call the DefectDoJo API and create a Product with a CI/CD enguagement, then update the DependancyTrack Pjject by adding the integration config.
We have created a Python Flask proxy to glue this workflow together.
Current Behavior:
We have many Products and teams working together, and as part of the on-boarding for DependencyTrack we manually need to Create over 2000 Products in DefectDoJo then manually configure the DependencyTrack integration.
Proposed Behavior:
When a new BOM is processed, the webhook is fired that connects to the DefectDoJo API creating the new Product (if one doesn't already exist by the same name), and create the CICD engagement. The response from DefectDoJo includes the engagement ID which can then be processed by DependencyTrack and added to the integration project property for the project that consume the BOM.
Would it be possible to add the logic and webhooks for DependencyTrack to call the DefectDoJo API and create a Product with a CI/CD enguagement, then update the DependancyTrack Pjject by adding the integration config.
We have created a Python Flask proxy to glue this workflow together.
Current Behavior:
We have many Products and teams working together, and as part of the on-boarding for DependencyTrack we manually need to Create over 2000 Products in DefectDoJo then manually configure the DependencyTrack integration.
Proposed Behavior:
When a new BOM is processed, the webhook is fired that connects to the DefectDoJo API creating the new Product (if one doesn't already exist by the same name), and create the CICD engagement. The response from DefectDoJo includes the engagement ID which can then be processed by DependencyTrack and added to the integration project property for the project that consume the BOM.