-
Type:
Task
-
Resolution: Fixed
-
Priority:
Major - P3
-
Affects Version/s: None
-
Component/s: None
-
Server Security
-
Fully Compatible
-
Security 2024-05-13
-
0
- Ensure that all third party components are recorded within Black Duck
- Ensure that within Black Duck's master branch of the MongoDB project, all components:
- Are marked as either reviewed or ignored
- Have had any manually set file paths unset
- Have versions set, if a named version of the component was vendored
- Have Origin IDs set, if the origin we've vendored the software from is known to Black Duck
- Are marked as "Modified" if modifications have been made
- File tickets for components missing from README.third_party.md or THIRD-PARTY-NOTICES as appropriate. Tickets for each component will be assigned to the component's owner.
- Transitive dependencies will not be described in this Bill of Materials, and should be removed from the BOM.
- Libraries used for "experimental features" which may be compiled into the server but are not in production builds should be included in the manifest. This will include gRPC and librdkafka.
- Test only components should be documented as well.
- depends on
-
-
- Closed
-
- is depended on by
-
-
- Closed
-
-
-
- Closed
-