BartWullems's blog is a platform for sharing insights and expertise in Microsoft technologies, software development best practices, and programming tutorials. Through articles, code samples, and technical discussions, BartWullems offers insights into building scalable, maintainable, and performant software applications using Microsoft technologies such as .NET, Azure, and Visual Studio. Readers can learn about design patterns, development techniques, and tooling recommendations to enhance their skills and productivity as Microsoft developers. Additionally, BartWullems provides updates on the latest developments in Microsoft ecosystem, community events, and industry trends to help developers stay informed and engaged in the Microsoft developer community.

The Art of Simplicity

This guide demonstrates how to integrate Dependency-Track into Azure DevOps pipelines for automated vulnerability management. The workflow generates Software Bill of Materials (SBOMs) during the CI phase using CycloneDX tools for .NET and Angular projects, stores them as build artifacts, then uploads them to Dependency-Track during CD deployment stages. Setup involves creating an API key in Dependency-Track with appropriate permissions, configuring a service connection in Azure DevOps, and using the Dependency-Track extension to upload SBOMs per environment for continuous supply chain visibility.

Integrating Dependency-Track into Azure DevOps Pipelines