Sebastian Nagel created NUTCH-2668: -------------------------------------- Summary: Integrate OWASP dependency checks as ant target Key: NUTCH-2668 URL: https://issues.apache.org/jira/browse/NUTCH-2668 Project: Nutch Issue Type: Improvement Components: build Affects Versions: 2.4, 1.16 Reporter: Sebastian Nagel Fix For: 2.4, 1.16
[OWASP|http://www.owasp.org/] provides the [ant tool "dependency-check"|https://jeremylong.github.io/DependencyCheck/dependency-check-ant/index.html] which lists potential vulnerabilities of library dependencies. We should integrate the generation of vulnerability reports into our build system as an optional task/target recommended to be run from time to time and especially shortly before releases are prepared. -- This message was sent by Atlassian JIRA (v7.6.3#76005)