400 Error on creating new vulnerability

[SeanWrightFeat]

The defect may already be reported! Please search for the defect before creating one.

Current Behavior:

When you attempt to create a new vulnerability (Vulnerabilities -> Create vulnerability) , you receive a 400 error. Upon view the network logs the following response is returned in the error:

Cannot deserialize value of type `org.dependencytrack.model.Cwe` from Array value (token `JsonToken.START_ARRAY`)
 at [Source: (org.glassfish.jersey.message.internal.ReaderInterceptorExecutor$UnCloseableInputStream); line: 1, column: 348] (through reference chain: org.dependencytrack.model.Vulnerability["cwe"])

Steps to Reproduce:

1. Navigate to the Vulnerabilities section.
2. Click on the Create vulnerability button
3. Click on the Create button (I did fill in all the details, but you can reproduce the same error by not completing any details)

Expected Behavior:

No errors to occur and for the new vulnerability to be created.

Environment:

• Dependency-Track Version: 4.5.0
• Distribution: Docker
• BOM Format & Version: N/A
• Database Server: PostgreSQL
• Browser: Brave (version 1.38.119) and Firefox (version 100.0.1)

Additional Details:

None

[nscuro]

Thanks for reporting @SeanWrightFeat! Fixed in 4.5.1.

[SeanWrightFeat]

Wow! That was quick!!! Thank you for having a look and for fixing it. Keep up the great work, you are all doing an amazing job.