Thanks to visit codestin.com
Credit goes to github.com

Skip to content

[docs] Add Example Cases to docs #12265

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 22, 2025
Merged

[docs] Add Example Cases to docs #12265

merged 2 commits into from
Apr 22, 2025

Conversation

paulOsinski
Copy link
Contributor

@mtesauro did a solid presentation on the DD-Inc YouTube channel which I thought would make a great written reference for modelling DefectDojo (both OS and Pro). This PR adds this to the public docs along with screenshots.

Screenshot 2025-04-18 at 4 00 14 PM

@github-actions github-actions bot added the docs label Apr 18, 2025
@dryrunsecurity DryRunSecurity
Copy link

DryRun Security

This pull request contains documentation with potential information exposure risks, including exposed email addresses, references to external services, and detailed descriptions of internal product features that could be leveraged for social engineering or provide insights into the product's architecture.

💭 Unconfirmed Findings (3)
Vulnerability Potential Information Exposure Risks
Description Documentation contains exposed email addresses ([email protected], [email protected]) which could enable social engineering or phishing attempts
Vulnerability External Resource Considerations
Description Documentation includes embedded YouTube video with referrer policy, references to external services like Stripe and GitHub, and UI screenshots that might disclose sensitive configuration details
Vulnerability Sensitive Information Disclosure
Description Detailed documentation reveals information about Role-Based Access Control (RBAC) models, pro feature descriptions, and specific configuration and trial signup processes that could provide insights into internal product architecture

All finding details can be found in the DryRun Security Dashboard.

@Maffooch Maffooch added this to the 2.45.3 milestone Apr 21, 2025
valentijnscholten
valentijnscholten approved these changes Apr 21, 2025
View reviewed changes
Copy link
Member

@valentijnscholten valentijnscholten left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice, this comes up on the Slack channel from time to time ("How to setup my product structure?") .

mtesauro
mtesauro approved these changes Apr 22, 2025
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@mtesauro
Copy link
Contributor

Merging with a failing test since all changes are isolated to the docs directory aka not part of the DefectDojo app itself.

@mtesauro mtesauro merged commit c8a50b0 into DefectDojo:bugfix Apr 22, 2025
76 of 77 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mtesauro mtesauro mtesauro approved these changes

@valentijnscholten valentijnscholten valentijnscholten approved these changes

@hblankenship hblankenship hblankenship approved these changes

@Maffooch Maffooch Maffooch approved these changes

Assignees
No one assigned
Labels
docs
Projects
None yet
Milestone
2.45.3
Development

Successfully merging this pull request may close these issues.
5 participants
@paulOsinski @mtesauro @valentijnscholten @hblankenship @Maffooch