Dependency-Track can automatically publish results to the Kenna Security platform providing a consolidated view of every vulnerability across an organization including vulnerable components.
Dependency-Track accomplishes this in the following ways:
- Kenna Security integration is configured in Dependency-Track
- Dependency-Track pushes findings to Kenna on a periodic basis (configurable)
- Dependency-Track v3.4.0 or higher
- Kenna Security with Application Risk Module
Dependency-Track includes the ability to specify configuration properties on a per-project basis. This feature is used to map projects in Dependency-Track to applications/assets in Kenna.
|Property Value||The assets external_id|
Kenna Security Configuration
Step 1: Navigate to connectors
Step 2: Add a KDI connector