See <https://ci-builds.apache.org/job/Struts/job/Struts-site-javadocs/8/display/redirect>
Changes: ------------------------------------------ [...truncated 1.01 MB...] Progress (1): 4.1/237 kBProgress (1): 8.2/237 kBProgress (1): 12/237 kB Progress (1): 16/237 kBProgress (1): 20/237 kBProgress (1): 24/237 kBProgress (1): 28/237 kBProgress (1): 32/237 kBProgress (1): 36/237 kBProgress (1): 40/237 kBProgress (1): 45/237 kBProgress (1): 49/237 kBProgress (1): 53/237 kBProgress (1): 57/237 kBProgress (1): 61/237 kBProgress (1): 65/237 kBProgress (1): 69/237 kBProgress (1): 73/237 kBProgress (1): 77/237 kBProgress (1): 81/237 kBProgress (1): 86/237 kBProgress (1): 90/237 kBProgress (1): 94/237 kBProgress (1): 98/237 kBProgress (1): 102/237 kBProgress (1): 106/237 kBProgress (1): 110/237 kBProgress (1): 114/237 kBProgress (1): 118/237 kBProgress (1): 122/237 kBProgress (1): 126/237 kBProgress (1): 131/237 kBProgress (1): 135/237 kBProgress (1): 139/237 kBProgress (1): 143/237 kBProgress (1): 147/237 kBProgress (1): 151/237 kBProgress (1): 155/237 kBProgress (1): 159/237 kBProgress (1): 163/237 kBProgress (1): 167/237 kBProgress (1): 172/237 kBProgress (1): 176/237 kBProgress (1): 180/237 kBProgress (1): 184/237 kBProgress (1): 188/237 kBProgress (1): 192/237 kBProgress (1): 196/237 kBProgress (1): 200/237 kBProgress (1): 204/237 kBProgress (1): 208/237 kBProgress (1): 212/237 kBProgress (1): 217/237 kBProgress (1): 221/237 kBProgress (1): 225/237 kBProgress (1): 229/237 kBProgress (1): 233/237 kBProgress (1): 237 kB Downloaded from central: https://repo.maven.apache.org/maven2/org/glassfish/javax.el/3.0.1-b11/javax.el-3.0.1-b11.jar (237 kB at 16 MB/s) [INFO] Unable to resolve org.apache.struts:struts2-core:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-velocity-plugin:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-core:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-osgi-plugin:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-velocity-plugin:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-core:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-core:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-core:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Unable to resolve org.apache.struts:struts2-core:6.0.0-RC3 as it has not been built yet - creating a virtual dependency instead. [INFO] Checking for updates [INFO] NVD CVE requires several updates; this could take a couple of minutes. [INFO] Download Started for NVD CVE - 2002 [INFO] Download Complete for NVD CVE - 2002 (81 ms) [INFO] Processing Started for NVD CVE - 2002 [INFO] Download Started for NVD CVE - 2003 [INFO] Download Complete for NVD CVE - 2003 (42 ms) [INFO] Processing Started for NVD CVE - 2003 [INFO] Processing Complete for NVD CVE - 2002 (5275 ms) [INFO] Processing Complete for NVD CVE - 2003 (1616 ms) [INFO] Download Started for NVD CVE - 2004 [INFO] Download Complete for NVD CVE - 2004 (53 ms) [INFO] Processing Started for NVD CVE - 2004 [INFO] Processing Complete for NVD CVE - 2004 (2004 ms) [INFO] Download Started for NVD CVE - 2005 [INFO] Download Complete for NVD CVE - 2005 (116 ms) [INFO] Processing Started for NVD CVE - 2005 [INFO] Processing Complete for NVD CVE - 2005 (2599 ms) [INFO] Download Started for NVD CVE - 2006 [INFO] Download Complete for NVD CVE - 2006 (155 ms) [INFO] Processing Started for NVD CVE - 2006 [INFO] Processing Complete for NVD CVE - 2006 (3899 ms) [INFO] Download Started for NVD CVE - 2007 [INFO] Download Complete for NVD CVE - 2007 (80 ms) [INFO] Processing Started for NVD CVE - 2007 [INFO] Processing Complete for NVD CVE - 2007 (3607 ms) [INFO] Download Started for NVD CVE - 2008 [INFO] Download Complete for NVD CVE - 2008 (109 ms) [INFO] Processing Started for NVD CVE - 2008 [INFO] Download Started for NVD CVE - 2009 [INFO] Download Complete for NVD CVE - 2009 (87 ms) [INFO] Processing Started for NVD CVE - 2009 [INFO] Processing Complete for NVD CVE - 2008 (5005 ms) [INFO] Download Started for NVD CVE - 2010 [INFO] Download Complete for NVD CVE - 2010 (171 ms) [INFO] Processing Started for NVD CVE - 2010 [INFO] Processing Complete for NVD CVE - 2009 (5297 ms) [INFO] Download Started for NVD CVE - 2011 [INFO] Download Complete for NVD CVE - 2011 (111 ms) [INFO] Processing Started for NVD CVE - 2011 [INFO] Processing Complete for NVD CVE - 2010 (6235 ms) [INFO] Download Started for NVD CVE - 2012 [INFO] Download Complete for NVD CVE - 2012 (104 ms) [INFO] Processing Started for NVD CVE - 2012 [INFO] Processing Complete for NVD CVE - 2011 (6843 ms) [INFO] Download Started for NVD CVE - 2013 [INFO] Download Complete for NVD CVE - 2013 (173 ms) [INFO] Processing Started for NVD CVE - 2013 [INFO] Download Started for NVD CVE - 2014 [INFO] Download Complete for NVD CVE - 2014 (116 ms) [INFO] Processing Started for NVD CVE - 2014 [INFO] Processing Complete for NVD CVE - 2012 (8303 ms) [INFO] Processing Complete for NVD CVE - 2013 (7788 ms) [INFO] Download Started for NVD CVE - 2015 [INFO] Download Complete for NVD CVE - 2015 (89 ms) [INFO] Processing Started for NVD CVE - 2015 [INFO] Processing Complete for NVD CVE - 2014 (6763 ms) [INFO] Download Started for NVD CVE - 2016 [INFO] Download Complete for NVD CVE - 2016 (140 ms) [INFO] Processing Started for NVD CVE - 2016 [INFO] Processing Complete for NVD CVE - 2015 (5140 ms) [INFO] Download Started for NVD CVE - 2017 [INFO] Download Complete for NVD CVE - 2017 (118 ms) [INFO] Processing Started for NVD CVE - 2017 [INFO] Processing Complete for NVD CVE - 2016 (5757 ms) [INFO] Download Started for NVD CVE - 2018 [INFO] Download Complete for NVD CVE - 2018 (138 ms) [INFO] Processing Started for NVD CVE - 2018 [INFO] Processing Complete for NVD CVE - 2017 (7072 ms) [INFO] Download Started for NVD CVE - 2019 [INFO] Download Complete for NVD CVE - 2019 (129 ms) [INFO] Processing Started for NVD CVE - 2019 [INFO] Processing Complete for NVD CVE - 2018 (6889 ms) [INFO] Download Started for NVD CVE - 2020 [INFO] Download Complete for NVD CVE - 2020 (366 ms) [INFO] Processing Started for NVD CVE - 2020 [INFO] Processing Complete for NVD CVE - 2019 (6429 ms) [INFO] Download Started for NVD CVE - 2021 [INFO] Download Complete for NVD CVE - 2021 (166 ms) [INFO] Processing Started for NVD CVE - 2021 [INFO] Processing Complete for NVD CVE - 2020 (7447 ms) [INFO] Download Started for NVD CVE - 2022 [INFO] Download Complete for NVD CVE - 2022 (60 ms) [INFO] Processing Started for NVD CVE - 2022 [INFO] Processing Complete for NVD CVE - 2022 (1323 ms) [INFO] Processing Complete for NVD CVE - 2021 (7388 ms) [INFO] Download Started for NVD CVE - Modified [INFO] Download Complete for NVD CVE - Modified (41 ms) [INFO] Processing Started for NVD CVE - Modified [INFO] Processing Complete for NVD CVE - Modified (1337 ms) [INFO] Begin database maintenance [INFO] Updated the CPE ecosystem on 124407 NVD records [INFO] Removed the CPE ecosystem on 3514 NVD records [INFO] End database maintenance (17119 ms) [WARNING] A new version of dependency-check is available. Consider updating to version 7.0.4. [INFO] Begin database defrag [INFO] End database defrag (3872 ms) [INFO] Check for updates complete (117099 ms) [INFO] Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report. About ODC: https://jeremylong.github.io/DependencyCheck/general/internals.html False Positives: https://jeremylong.github.io/DependencyCheck/general/suppression.html 💖 Sponsor: https://github.com/sponsors/jeremylong [INFO] Analysis Started [INFO] Finished Archive Analyzer (0 seconds) [INFO] Finished File Name Analyzer (0 seconds) [INFO] Finished Jar Analyzer (0 seconds) [INFO] Finished Dependency Merging Analyzer (0 seconds) [INFO] Finished Version Filter Analyzer (0 seconds) [INFO] Finished Hint Analyzer (0 seconds) [INFO] Created CPE Index (1 seconds) [INFO] Finished CPE Analyzer (3 seconds) [INFO] Finished False Positive Analyzer (0 seconds) [INFO] Finished NVD CVE Analyzer (0 seconds) 00:00 INFO: Vulnerability found: jquery below 3.0.0-beta1 00:00 INFO: Vulnerability found: jquery below 2.2.0 00:00 INFO: Vulnerability found: jquery below 3.4.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: bootstrap below 3.4.1 00:00 INFO: Vulnerability found: bootstrap below 3.4.0 00:00 INFO: Vulnerability found: bootstrap below 3.4.0 00:00 INFO: Vulnerability found: bootstrap below 3.4.0 00:00 INFO: Vulnerability found: bootstrap below 3.4.0 00:00 INFO: Vulnerability found: jquery below 3.0.0-beta1 00:00 INFO: Vulnerability found: jquery below 2.2.0 00:00 INFO: Vulnerability found: jquery below 3.4.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery below 1.9.0b1 00:00 INFO: Vulnerability found: jquery below 1.12.0 00:00 INFO: Vulnerability found: jquery below 3.4.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery below 3.5.0 00:00 INFO: Vulnerability found: jquery-ui below 1.13.0 00:00 INFO: Vulnerability found: jquery-ui below 1.13.0 00:00 INFO: Vulnerability found: jquery-ui below 1.13.0 [INFO] Finished RetireJS Analyzer (0 seconds) [INFO] Finished Sonatype OSS Index Analyzer (1 seconds) [INFO] Finished Vulnerability Suppression Analyzer (0 seconds) [INFO] Finished Dependency Bundling Analyzer (0 seconds) [INFO] Analysis Complete (6 seconds) [INFO] Writing report to: <https://ci-builds.apache.org/job/Struts/job/Struts-site-javadocs/ws/target/struts/target/site/dependency-check-report.html> [WARNING] One or more dependencies were identified with known vulnerabilities in Struts 2: bootstrap.min.js (pkg:javascript/bootstrap@3.3.4) : CVE-2016-10735, CVE-2018-14040, CVE-2018-14041, CVE-2018-14042, CVE-2019-8331 guava-19.0.jar (pkg:maven/com.google.guava/guava@19.0, cpe:2.3:a:google:guava:19.0:*:*:*:*:*:*:*) : CVE-2020-8908 hibernate-validator-6.1.2.Final.jar (pkg:maven/org.hibernate.validator/hibernate-validator@6.1.2.Final, cpe:2.3:a:redhat:hibernate_validator:6.1.2:*:*:*:*:*:*:*) : CVE-2020-10693 jackson-databind-2.10.5.1.jar (pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.10.5.1, cpe:2.3:a:fasterxml:jackson-databind:2.10.5.1:*:*:*:*:*:*:*, cpe:2.3:a:fasterxml:jackson-modules-java8:2.10.5.1:*:*:*:*:*:*:*) : CVE-2020-36518 jquery-1.12.4.min.js (pkg:javascript/jqu...@1.12.4.min) : CVE-2015-9251, CVE-2019-11358 jquery-2.1.4.min.js (pkg:javascript/jqu...@2.1.4.min) : CVE-2015-9251, CVE-2019-11358 jquery-ui-1.12.1.min.js (pkg:javascript/jquery-ui@1.12.1) : CVE-2021-41182, CVE-2021-41183, CVE-2021-41184 junit-4.13.jar (pkg:maven/junit/junit@4.13, cpe:2.3:a:junit:junit4:4.13:*:*:*:*:*:*:*) : CVE-2020-15250 spring-beans-4.3.30.RELEASE.jar (pkg:maven/org.springframework/spring-beans@4.3.30.RELEASE, cpe:2.3:a:pivotal_software:spring_framework:4.3.30:release:*:*:*:*:*:*, cpe:2.3:a:springsource:spring_framework:4.3.30:release:*:*:*:*:*:*, cpe:2.3:a:vmware:spring_framework:4.3.30:release:*:*:*:*:*:*) : CVE-2022-22965 testng-6.9.10.jar: jquery-1.7.1.min.js (pkg:javascript/jqu...@1.7.1.min) : CVE-2012-6708, CVE-2015-9251, CVE-2019-11358 tiles-ognl-3.0.8.jar (pkg:maven/org.apache.tiles/tiles-ognl@3.0.8, cpe:2.3:a:apache:tiles:3.0.8:*:*:*:*:*:*:*, cpe:2.3:a:ognl_project:ognl:3.0.8:*:*:*:*:*:*:*) : CVE-2016-3093 See the dependency-check report for more details. [INFO] ------------------------------------------------------------------------ [INFO] Reactor Summary for Struts 2 6.0.0-RC3: [INFO] [INFO] Struts 2 Bill of Materials ......................... SUCCESS [ 1.173 s] [INFO] Struts 2 ........................................... FAILURE [02:30 min] [INFO] Struts 2 Core ...................................... SKIPPED [INFO] Struts 2 Plugins ................................... SKIPPED [INFO] Struts 2 Async Plugin .............................. SKIPPED [INFO] Struts 2 Bean Validation Plugin .................... SKIPPED [INFO] Struts 2 CDI Plugin ................................ SKIPPED [INFO] Struts 2 Velocity Plugin ........................... SKIPPED [INFO] Struts 2 Configuration Browser Plugin .............. SKIPPED [INFO] Struts 2 Convention Plugin ......................... SKIPPED [INFO] Struts 2 DWR Plugin ................................ SKIPPED [INFO] DEPRECATED: Struts 2 Embedded JSP Plugin (since 2.6) SKIPPED [INFO] DEPRECATED: Struts 2 GXP Plugin - since 2.6 ........ SKIPPED [INFO] Struts 2 Spring Plugin ............................. SKIPPED [INFO] DEPRECATED: Struts 2 Portlet Mocks Plugin - since 2.6 SKIPPED [INFO] DEPRECATED: Struts 2 Portlet Plugin - since 2.6 .... SKIPPED [INFO] Struts 2 JUnit Plugin .............................. SKIPPED [INFO] Struts 2 Jasper Reports Plugin ..................... SKIPPED [INFO] Struts 2 Java Templates Plugin ..................... SKIPPED [INFO] Struts 2 JFreeChart Plugin ......................... SKIPPED [INFO] Struts 2 JSON Plugin ............................... SKIPPED [INFO] DEPRECATED: Struts 2 OSGi Plugin - since 2.6 ....... SKIPPED [INFO] DEPRECATED: Struts 2 OVal Plugin (since 2.6) ....... SKIPPED [INFO] Struts 2 Pell Multipart Plugin ..................... SKIPPED [INFO] DEPRECATED: Struts 2 Plexus Plugin - since 2.6 ..... SKIPPED [INFO] Struts 2 Tiles Plugin .............................. SKIPPED [INFO] DEPRECATED: Struts 2 Portlet Tiles Plugin - since 2.6 SKIPPED [INFO] Struts 2 REST Plugin ............................... SKIPPED [INFO] DEPRECATED: Struts 2 Sitemesh Plugin - since 2.6 ... SKIPPED [INFO] Struts 2 TestNG Plugin ............................. SKIPPED [INFO] DEPRECATED: Struts 2 OSGi Bundles - since 2.6 ...... SKIPPED [INFO] DEPRECATED: Struts 2 OSGi Admin Bundle - since 2.6 . SKIPPED [INFO] DEPRECATED: Struts 2 OSGi Demo Bundle - since 2.6 .. SKIPPED [INFO] Struts 2 Webapps ................................... SKIPPED [INFO] Struts 2 Showcase Webapp ........................... SKIPPED [INFO] Struts 2 Rest Showcase Webapp ...................... SKIPPED [INFO] Struts 2 Assembly .................................. SKIPPED [INFO] ------------------------------------------------------------------------ [INFO] BUILD FAILURE [INFO] ------------------------------------------------------------------------ [INFO] Total time: 02:33 min [INFO] Finished at: 2022-04-05T07:11:46Z [INFO] ------------------------------------------------------------------------ [ERROR] Failed to execute goal org.apache.maven.plugins:maven-site-plugin:3.9.0:site (default-cli) on project struts2-parent: Error generating dependency-check-maven:6.5.1:aggregate report: One or more exceptions occurred during dependency-check analysis: One or more exceptions occurred during analysis: [ERROR] Maven31DependencyResolverException: org.eclipse.aether.resolution.DependencyResolutionException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] caused by DependencyResolutionException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] caused by ArtifactResolutionException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] caused by ArtifactTransferException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] Maven31DependencyResolverException: org.eclipse.aether.resolution.DependencyResolutionException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] caused by DependencyResolutionException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] caused by ArtifactResolutionException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] caused by ArtifactTransferException: org.yaml:snakeyaml:jar:1.21 failed to transfer from https://repo.maven.apache.org/maven2 during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of central has elapsed or updates are forced. Original error: Could not transfer artifact org.yaml:snakeyaml:jar:1.21 from/to central (https://repo.maven.apache.org/maven2): transfer failed for https://repo.maven.apache.org/maven2/org/yaml/snakeyaml/1.21/snakeyaml-1.21.jar [ERROR] -> [Help 1] [ERROR] [ERROR] To see the full stack trace of the errors, re-run Maven with the -e switch. [ERROR] Re-run Maven using the -X switch to enable full debug logging. [ERROR] [ERROR] For more information about the errors and possible solutions, please read the following articles: [ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/MojoExecutionException [ERROR] [ERROR] After correcting the problems, you can resume the build with the command [ERROR] mvn <args> -rf :struts2-parent Build step 'Execute shell' marked build as failure ERROR: No tool found matching MAVEN_3_LATEST__HOME Setting MAVEN_3_LATEST_HOME=/home/jenkins/tools/maven/latest3/ --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@struts.apache.org For additional commands, e-mail: dev-h...@struts.apache.org
