Skip to content

Add cvssv4 support in dependency-check json report. #1055

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Reamer merged 1 commit into from
Jun 18, 2025
Merged

Add cvssv4 support in dependency-check json report. #1055

Reamer merged 1 commit into from
Jun 18, 2025

Conversation

@ospreij
Copy link
Contributor

@ospreij ospreij commented Jun 13, 2025

DependencyCheck can generate CVSSv4 information.

This PR aims to add support for this, while keeping consistency with CVSSv3/CVSSv2 handling.

Should close #1038 .

@ospreij ospreij mentioned this pull request Jun 18, 2025
Closed
Reamer
Reamer approved these changes Jun 18, 2025
View reviewed changes
Copy link
Member

@Reamer Reamer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Reamer
Copy link
Member

Reamer commented Jun 18, 2025

Thank you for your contribution. The code quality looks really great.

@Reamer Reamer merged commit 84a5cb7 into dependency-check:master Jun 18, 2025
3 checks passed
@sellersj sellersj mentioned this pull request Oct 30, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Reamer Reamer Reamer approved these changes

Assignees

No one assigned

Labels

enhancement

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Vulnerability Reports with CVSSV4 data cannot be parsed

2 participants

@ospreij @Reamer