-
-
Notifications
You must be signed in to change notification settings - Fork 563
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
API Patch Project endpoint silently ignore purl value in object form #3509
Comments
Other affected API endpoints: |
…projects either as string or object to conform to swagger api defintion Signed-off-by: Sebastien Delcoigne <sebastien.delcoigne@gmail.com>
…projects either as string or object to conform to swagger api defintion Signed-off-by: Sebastien Delcoigne <sebastien.delcoigne@gmail.com>
I'm interested to know why the json format for purl is useful? It's more common to communicate it in string form? |
Yeah, TBH this seems to be more of an issue with Swagger indicating that I don't think there is value in specifying PURLs as object. Resolving this merely requires adding a dependency-track/src/main/java/org/dependencytrack/model/Project.java Lines 377 to 384 in 8b23434
|
Sure no problems. |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Current Behavior
When using the PATCH Project endpoint, if the purl is in object format, it ignores the purl value.
If it is in string format, it is processed.
I suspect the object deserialization of PackageURL is failling and just use null instead.
It may affect other API using the PackageURL object.
Steps to Reproduce
Expected Behavior
Object purl should be accepted, or the swagger should use a string for PackageURL.
Dependency-Track Version
4.8.x
Dependency-Track Distribution
Container Image
Database Server
N/A
Database Server Version
No response
Browser
N/A
Checklist
The text was updated successfully, but these errors were encountered: