[
https://issues.apache.org/jira/browse/CLOUDSTACK-10271?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17055126#comment-17055126
]
ASF subversion and git services commented on CLOUDSTACK-10271:
--------------------------------------------------------------
Commit 016644d507e6f2d51665b94d290c911f8fec8e08 in cloudstack's branch
refs/heads/master from dahn
[ https://gitbox.apache.org/repos/asf?p=cloudstack.git;h=016644d ]
Revert "CLOUDSTACK-10271 maven plugin for owasp dependency chec… (#3953)
This reverts commit 2d63ed5c243bd0732077c0e5485021b2be274aa7. (PR #2446)
fails when network causes CVE DB not being able to be downloaded
> detect vulnerabilities in depndencies
> -------------------------------------
>
> Key: CLOUDSTACK-10271
> URL: https://issues.apache.org/jira/browse/CLOUDSTACK-10271
> Project: CloudStack
> Issue Type: Wish
> Security Level: Public(Anyone can view this level - this is the
> default.)
> Reporter: Daan
> Assignee: Daan
> Priority: Major
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> As a developer I want to know whether and what dependencies I am using that
> might harm my users. For this we need to add the owasp dependency checker to
> the maven build. It will require more then just this but it is a good first
> step.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
