|
21 | 21 | <badges.skip>${wc.qa.skip}</badges.skip> |
22 | 22 | <javadoc.excluded.packages /> |
23 | 23 | <checkstyle.excludes /> |
| 24 | + |
| 25 | + <!-- OWASP dependency vulnerability scanner--> |
| 26 | + <bt.owasp.dependency-check.version>3.3.1</bt.owasp.dependency-check.version> |
| 27 | + <bt.owasp.dependency-check.skip>false</bt.owasp.dependency-check.skip> |
| 28 | + <!-- properties to allow for mirroring of CVE definitions --> |
| 29 | + <bt.owasp.dependency-check.cve.mirror>https://nvd.nist.gov/feeds/xml/cve</bt.owasp.dependency-check.cve.mirror> |
| 30 | + <bt.owasp.dependency-check.cve.12.path>1.2</bt.owasp.dependency-check.cve.12.path> |
| 31 | + <bt.owasp.dependency-check.cve.20.path>2.0</bt.owasp.dependency-check.cve.20.path> |
24 | 32 | </properties> |
25 | 33 |
|
26 | 34 | <description> |
|
160 | 168 | </executions> |
161 | 169 | </plugin> |
162 | 170 |
|
| 171 | + <plugin> |
| 172 | + <groupId>org.owasp</groupId> |
| 173 | + <artifactId>dependency-check-maven</artifactId> |
| 174 | + <version>${bt.owasp.dependency-check.version}</version> |
| 175 | + <configuration> |
| 176 | + <skip>${bt.owasp.dependency-check.skip}</skip> |
| 177 | + <failBuildOnAnyVulnerability>true</failBuildOnAnyVulnerability> |
| 178 | + <cveUrl12Modified>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.12.path}/nvdcve-Modified.xml.gz</cveUrl12Modified> |
| 179 | + <cveUrl20Modified>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.20.path}/nvdcve-2.0-Modified.xml.gz</cveUrl20Modified> |
| 180 | + <cveUrl12Base>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.12.path}/nvdcve-%d.xml.gz</cveUrl12Base> |
| 181 | + <cveUrl20Base>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.20.path}/nvdcve-2.0-%d.xml.gz</cveUrl20Base> |
| 182 | + </configuration> |
| 183 | + <executions> |
| 184 | + <execution> |
| 185 | + <id>checkDependencies</id> |
| 186 | + <phase>verify</phase> |
| 187 | + <goals> |
| 188 | + <goal>check</goal> |
| 189 | + </goals> |
| 190 | + </execution> |
| 191 | + </executions> |
| 192 | + </plugin> |
| 193 | + |
163 | 194 | </plugins> |
164 | 195 | </build> |
165 | 196 |
|
|
309 | 340 | </configuration> |
310 | 341 | </plugin> |
311 | 342 |
|
| 343 | + <!-- Generate the dependency vulnerability check report --> |
| 344 | + <plugin> |
| 345 | + <groupId>org.owasp</groupId> |
| 346 | + <artifactId>dependency-check-maven</artifactId> |
| 347 | + <version>${bt.owasp.dependency-check.version}</version> |
| 348 | + <reportSets> |
| 349 | + <reportSet> |
| 350 | + <reports> |
| 351 | + <report>aggregate</report> |
| 352 | + </reports> |
| 353 | + <configuration> |
| 354 | + <skip>false</skip> |
| 355 | + <failOnError>false</failOnError> |
| 356 | + <cveUrl12Modified>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.12.path}/nvdcve-Modified.xml.gz</cveUrl12Modified> |
| 357 | + <cveUrl20Modified>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.20.path}/nvdcve-2.0-Modified.xml.gz</cveUrl20Modified> |
| 358 | + <cveUrl12Base>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.12.path}/nvdcve-%d.xml.gz</cveUrl12Base> |
| 359 | + <cveUrl20Base>${bt.owasp.dependency-check.cve.mirror}/${bt.owasp.dependency-check.cve.20.path}/nvdcve-2.0-%d.xml.gz</cveUrl20Base> |
| 360 | + </configuration> |
| 361 | + </reportSet> |
| 362 | + </reportSets> |
| 363 | + </plugin> |
| 364 | + |
312 | 365 | </plugins> |
313 | 366 | </reporting> |
314 | 367 |
|
|
0 commit comments