[jira] [Updated] (NUTCH-2668) Integrate OWASP dependency checks as ant target

Sebastian Nagel (JIRA) Wed, 24 Oct 2018 02:01:14 -0700


     [ 
https://issues.apache.org/jira/browse/NUTCH-2668?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Sebastian Nagel updated NUTCH-2668:
-----------------------------------
    Attachment: 1x-dependency-check-report.html
                1x-dependency-check-vulnerability.html
                2x-dependency-check-report.html
                2x-dependency-check-vulnerability.html

> Integrate OWASP dependency checks as ant target
> -----------------------------------------------
>
>                 Key: NUTCH-2668
>                 URL: https://issues.apache.org/jira/browse/NUTCH-2668
>             Project: Nutch
>          Issue Type: Improvement
>          Components: build
>    Affects Versions: 2.4, 1.16
>            Reporter: Sebastian Nagel
>            Priority: Major
>             Fix For: 2.4, 1.16
>
>         Attachments: 1x-dependency-check-report.html, 
> 1x-dependency-check-vulnerability.html, 2x-dependency-check-report.html, 
> 2x-dependency-check-vulnerability.html
>
>
> [OWASP|http://www.owasp.org/] provides the [ant tool 
> "dependency-check"|https://jeremylong.github.io/DependencyCheck/dependency-check-ant/index.html]
>  which lists potential vulnerabilities of library dependencies. We should 
> integrate the generation of vulnerability reports into our build system as an 
> optional task/target recommended to be run from time to time and especially 
> shortly before releases are prepared.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Updated] (NUTCH-2668) Integrate OWASP dependency checks as ant target

Reply via email to