Forward group_by parameter to DefectDojo, v5 version

[webdevred]

Description

DefectDojo's import-scan and reimport-scan endpoints accept a group_by parameter that clusters findings into Finding Groups on import, but Dependency-Track never forwarded it. Operators who rely on Finding Groups for triage had to set group_by outside of DT or give it up entirely.

This adds a per-project property defectdojo.groupBy that, when set, is sent as group_by in the multipart form body for both import and reimport requests. When not set, behavior is unchanged.

This is the v5 companion to #6130, which makes the same change for 4.14.x. Adapted for the MultipartBodyPublisher-based DefectDojoClient in the apiserver module.

Addressed Issue

Related to #6061. v5 companion to #6130 (same change targeting 4.14.x).

Additional Details

The implementation follows the same pattern as defectdojo.testTitle: a per-project ProjectProperty is read in DefectDojoUploader and forwarded as a form field via MultipartBodyPublisher.addFormField. No new abstraction was introduced.

The dead .build() fix included in the v4 PR does not apply here. The v5 DefectDojoClient uses MultipartBodyPublisher rather than Apache HttpClient's MultipartEntityBuilder, so there is no equivalent dead call to remove.

Checklist

• I have read and understand the contributing guidelines
• This PR fixes a defect, and I have provided tests to verify that the fix is effective
• This PR implements an enhancement, and I have provided tests to verify that it works as intended
• This PR introduces changes to the database model, and I have added corresponding update logic
• This PR introduces new or alters existing behavior, and I have updated the documentation accordingly

[owasp-dt-bot]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

🟢 Metrics 0 complexity · 0 duplication

Metric	Results
Complexity	0
Duplication	0

View in Codacy

🟢 Coverage 100.00% diff coverage · 0.00% coverage variation

Metric	Results
Coverage variation	✅ 0.00% coverage variation (-1.00%)
Diff coverage	✅ 100.00% diff coverage (70.00%)

View coverage diff in Codacy

Coverage variation details

	Coverable lines	Covered lines	Coverage
Common ancestor commit (fb8940e)	42089	36519	86.77%
Head commit (99255b6)	42098 (+9)	36526 (+7)	86.76% (0.00%)

Coverage variation is the difference between the coverage for the head and common ancestor commits of the pull request branch: <coverage of head commit> - <coverage of common ancestor commit>

Diff coverage details

	Coverable lines	Covered lines	Diff coverage
Pull request (#6416)	10	10	100.00%

Diff coverage is the percentage of lines that are covered by tests out of the coverable lines that the pull request added or modified: <covered lines added or modified>/<coverable lines added or modified> * 100%

_{NEW Get contextual insights on your PRs based on Codacy's metrics, along with PR and Jira context, without leaving GitHub. Enable AI reviewer
TIP This summary will be updated as you push new changes.}

[nscuro]

Thanks!