New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Error attempting to upload findings to Defect Dojo #2628
Comments
Same problem here.
|
As a workaround what I did is to use the FPF format from DT. |
I'm getting a similar error. Currently using the following:
The error from Dependency-Track
I noticed the following from the DefectDojo logs:
|
It's an error related to pagination. Based on the follwing issue: #2707 seems that will be fixed in v4.8.1 |
Fixes DependencyTrack#2628 Signed-off-by: nscuro <nscuro@protonmail.com>
Fixes DependencyTrack#2628 Signed-off-by: nscuro <nscuro@protonmail.com>
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Current Behavior
Cannot use Defect Dojo integration - Defect Dojo Integration error when attempting to upload findings
log output:
ERROR [DefectDojoClient] Make the subsequent pagination call on http:[//]hostname/api/v2/tests/?engagement=1842&limit=100&offset=4500
2023-03-28 09:34:54,227 ERROR [DefectDojoUploader] An error occurred attempting to upload findings to DefectDojo
java.lang.NullPointerException: Cannot invoke "Object.toString()" because the return value of "kong.unirest.json.JSONObject.get(String)" is null
at org.dependencytrack.integrations.defectdojo.DefectDojoClient.getDojoTestId(DefectDojoClient.java:123)
at org.dependencytrack.integrations.defectdojo.DefectDojoUploader.upload(DefectDojoUploader.java:90)
at org.dependencytrack.tasks.VulnerabilityManagementUploadTask.processProjectFindings(VulnerabilityManagementUploadTask.java:66)
at org.dependencytrack.tasks.VulnerabilityManagementUploadTask.inform(VulnerabilityManagementUploadTask.java:46)
at org.dependencytrack.tasks.DefectDojoUploadTask.inform(DefectDojoUploadTask.java:37)
at alpine.event.framework.BaseEventService.lambda$publish$0(BaseEventService.java:101)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.base/java.lang.Thread.run(Unknown Source)
2023-03-28 09:34:54,228 ERROR [DefectDojoUploader] An error occurred with the DefectDojo integration point
java.lang.NullPointerException: Cannot invoke "Object.toString()" because the return value of "kong.unirest.json.JSONObject.get(String)" is null
at org.dependencytrack.integrations.defectdojo.DefectDojoClient.getDojoTestId(DefectDojoClient.java:123)
at org.dependencytrack.integrations.defectdojo.DefectDojoUploader.upload(DefectDojoUploader.java:90)
at org.dependencytrack.tasks.VulnerabilityManagementUploadTask.processProjectFindings(VulnerabilityManagementUploadTask.java:66)
at org.dependencytrack.tasks.VulnerabilityManagementUploadTask.inform(VulnerabilityManagementUploadTask.java:46)
at org.dependencytrack.tasks.DefectDojoUploadTask.inform(DefectDojoUploadTask.java:37)
at alpine.event.framework.BaseEventService.lambda$publish$0(BaseEventService.java:101)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.base/java.lang.Thread.run(Unknown Source)
Steps to Reproduce
Expected Behavior
Dependency-Track Findings report should be uploaded successfully to Defect Dojo
Dependency-Track Version
4.7.1
Dependency-Track Distribution
Container Image
Database Server
PostgreSQL
Database Server Version
No response
Browser
Google Chrome
Checklist
The text was updated successfully, but these errors were encountered: