feat(security): Adding snyk plugin

hypery2k · hypery2k · commit 5e39653059a9 · 2018-02-15T09:01:04.000+01:00
diff --git a/.travis.yml b/.travis.yml
@@ -8,4 +8,4 @@ jdk:
   - openjdk7
 
 install: mvn install -DskipTests=true -q
-script: mvn verify -B -q
+script: mvn verify snyk:monitor -B -q
diff --git a/README.md b/README.md
@@ -1,3 +1,4 @@
 # ZAP Java Integration
 
-[![Build Status](https://travis-ci.org/ContinuousSecurityTooling/zap-java.svg?branch=master)](https://travis-ci.org/ContinuousSecurityTooling/zap-java)
+[![Build Status](https://travis-ci.org/ContinuousSecurityTooling/zap-java.svg?branch=master)](https://travis-ci.org/ContinuousSecurityTooling/zap-java)
+[![Known Vulnerabilities](https://snyk.io/test/github/ContinuousSecurityTooling/zap-java/badge.svg)](https://snyk.io/test/github/ContinuousSecurityTooling/zap-java)
diff --git a/pom.xml b/pom.xml
@@ -85,6 +85,7 @@
         <maven-gpg-plugin.version>1.6</maven-gpg-plugin.version>
         <nexus-staging-maven-plugin.version>1.6.8</nexus-staging-maven-plugin.version>
         <maven-plugin.gitflow.version>1.8.0</maven-plugin.gitflow.version>
+        <maven-snyk-plugin.version>1.1.1</maven-snyk-plugin.version>
 
         <!-- Dependencies versions -->
         <zap-api-java.version>1.5.0</zap-api-java.version>
@@ -188,6 +189,35 @@
                     </configuration>
                 </plugin>
 
+                <!-- -->
+
+                <plugin>
+                    <groupId>io.snyk</groupId>
+                    <artifactId>snyk-maven-plugin</artifactId>
+                    <version>${maven-snyk-plugin.version}</version>
+                    <executions>
+                        <execution>
+                            <id>snyk-test</id>
+                            <phase>test</phase>
+                            <goals>
+                                <goal>test</goal>
+                            </goals>
+                        </execution>
+                        <execution>
+                            <id>snyk-monitor</id>
+                            <phase>install</phase>
+                            <goals>
+                                <goal>monitor</goal>
+                            </goals>
+                        </execution>
+                    </executions>
+                    <configuration>
+                        <apiToken>${SNYK_API_TOKEN}</apiToken>
+                        <failOnSeverity>medium</failOnSeverity>
+                        <org></org>
+                    </configuration>
+                </plugin>
+
                 <!-- Attach Javadoc and source -->
                 <plugin>
                     <groupId>org.apache.maven.plugins</groupId>
