You can turn off the ossindex checks by adding (we mention this in the "Building" section of https://github.com/apache/tika)
-Dossindex.skip On Thu, Jul 6, 2023 at 12:02 PM vijaya Panchak <[email protected]> wrote: > Sending again, > > On Jul 6, 2023, at 8:08 AM, vijaya Panchak <[email protected]> > wrote: > > > > > >> Hi, >> >> I am running following command mvn install -am -pl :tika-server-standard, >> as well as mvn install. >> >> Both are failing with bunch of errors as shown below >> >> >> *INFO*] Apache Tika digest commons ......................... *FAILURE* [ >> 0.019 s] >> >> [*INFO*] Apache Tika mail commons ........................... *SKIPPED* >> >> [*INFO*] Apache Tika XMP commons ............................ *SKIPPED* >> >> [*INFO*] Apache Tika ZIP commons ............................ *SKIPPED* >> >> [*INFO*] Apache Tika image parser module .................... *SKIPPED* >> >> [*INFO*] Apache Tika OCR parser module ...................... *SKIPPED* >> >> [*INFO*] Apache Tika audiovideo parser module ............... *SKIPPED* >> >> [*INFO*] Apache Tika text parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika code parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika html parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika font parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika XML parser module ...................... *SKIPPED* >> >> [*INFO*] Apache Tika Microsoft parser module ................ *SKIPPED* >> >> [*INFO*] Apache Tika package parser module .................. *SKIPPED* >> >> [*INFO*] Apache Tika PDF parser module ...................... *SKIPPED* >> >> [*INFO*] Apache Tika Apple parser module .................... *SKIPPED* >> >> [*INFO*] Apache Tika cad parser module ...................... *SKIPPED* >> >> [*INFO*] Apache Tika mail parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika miscellaneous office format parser module *SKIPPED* >> >> [*INFO*] Apache Tika news parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika crypto parser module ................... *SKIPPED* >> >> [*INFO*] Apache Tika WARC parser module ..................... *SKIPPED* >> >> [*INFO*] Apache Tika standard parser package ................ *SKIPPED* >> >> [*INFO*] Apache Tika XMP .................................... *SKIPPED* >> >> [*INFO*] Apache Tika language detection ..................... *SKIPPED* >> >> [*INFO*] Apache Tika langdetect test commons ................ *SKIPPED* >> >> [*INFO*] Apache Tika Optimaize langdetect ................... *SKIPPED* >> >> [*INFO*] Apache Tika OpenNLP langdetect ..................... *SKIPPED* >> >> [*INFO*] Apache Tika pipes .................................. *SKIPPED* >> >> [*INFO*] Apache Tika emitters ............................... *SKIPPED* >> >> [*INFO*] Apache Tika filesystem emitter ..................... *SKIPPED* >> >> [*INFO*] Apache Tika translate .............................. *SKIPPED* >> >> [*INFO*] Apache Tika server module .......................... *SKIPPED* >> >> [*INFO*] Apache Tika server core ............................ *SKIPPED* >> >> [*INFO*] Apache Tika standard server ........................ *SKIPPED* >> >> [*INFO*] >> *------------------------------------------------------------------------* >> >> [*INFO*] *BUILD FAILURE* >> >> [*INFO*] >> *------------------------------------------------------------------------* >> >> [*INFO*] Total time: 37.473 s >> >> [*INFO*] Finished at: 2023-07-05T19:42:07-07:00 >> >> [*INFO*] >> *------------------------------------------------------------------------* >> >> [*ERROR*] Failed to execute goal >> org.sonatype.ossindex.maven:ossindex-maven-plugin:3.2.0:audit >> *(audit-dependencies)* on project tika-parser-digest-commons: *Detected >> 1 vulnerable components:* >> >> [*ERROR*] * org.bouncycastle:bcprov-jdk18on:jar:1.73:compile; >> https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1 >> <https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1>* >> >> [*ERROR*] * * [CVE-2023-33201] CWE-200: Information Exposure >> (6.5); >> https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk18on&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1 >> <https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk18on&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1>* >> >> [*ERROR*] >> >> [*ERROR*] -> *[Help 1]* >> >> *org.apache.maven.lifecycle.LifecycleExecutionException*: *Failed to >> execute goal * >> *org.sonatype.ossindex.maven:ossindex-maven-plugin:3.2.0:audit* >> *(audit-dependencies)* on project tika-parser-digest-commons: *Detected >> 1 vulnerable components:* >> >> * org.bouncycastle:bcprov-jdk18on:jar:1.73:compile; >> https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1 >> <https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1>* >> >> * * [CVE-2023-33201] CWE-200: Information Exposure >> (6.5); >> https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk18on&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1 >> <https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk18on&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1>* >> >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.doExecute2 ( >> *MojoExecutor.java:333*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.doExecute ( >> *MojoExecutor.java:316*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.execute ( >> *MojoExecutor.java:212*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.execute ( >> *MojoExecutor.java:174*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.access$000 ( >> *MojoExecutor.java:75*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor$1.run ( >> *MojoExecutor.java:162*) >> >> *at* org.apache.maven.plugin.DefaultMojosExecutionStrategy.execute ( >> *DefaultMojosExecutionStrategy.java:39*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.execute ( >> *MojoExecutor.java:159*) >> >> *at* >> org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject >> (*LifecycleModuleBuilder.java:105*) >> >> *at* >> org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject >> (*LifecycleModuleBuilder.java:73*) >> >> >> *at*org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build >> (*SingleThreadedBuilder.java:53*) >> >> *at* org.apache.maven.lifecycle.internal.LifecycleStarter.execute ( >> *LifecycleStarter.java:118*) >> >> *at* org.apache.maven.DefaultMaven.doExecute (*DefaultMaven.java:261* >> ) >> >> *at* org.apache.maven.DefaultMaven.doExecute (*DefaultMaven.java:173* >> ) >> >> *at* org.apache.maven.DefaultMaven.execute (*DefaultMaven.java:101*) >> >> *at* org.apache.maven.cli.MavenCli.execute (*MavenCli.java:906*) >> >> *at* org.apache.maven.cli.MavenCli.doMain (*MavenCli.java:283*) >> >> *at* org.apache.maven.cli.MavenCli.main (*MavenCli.java:206*) >> >> *at* jdk.internal.reflect.NativeMethodAccessorImpl.invoke0 (*Native >> Method*) >> >> *at* jdk.internal.reflect.NativeMethodAccessorImpl.invoke ( >> *NativeMethodAccessorImpl.java:77*) >> >> *at* jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke ( >> *DelegatingMethodAccessorImpl.java:43*) >> >> *at* java.lang.reflect.Method.invoke (*Method.java:568*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced >> (*Launcher.java:283*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.launch ( >> *Launcher.java:226*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode >> (*Launcher.java:407*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.main ( >> *Launcher.java:348*) >> >> *Caused by*: org.apache.maven.plugin.MojoFailureException: *Detected 1 >> vulnerable components:* >> >> * org.bouncycastle:bcprov-jdk18on:jar:1.73:compile; >> https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1 >> <https://ossindex.sonatype.org/component/pkg:maven/org.bouncycastle/[email protected]?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1>* >> >> * * [CVE-2023-33201] CWE-200: Information Exposure >> (6.5); >> https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk18on&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1 >> <https://ossindex.sonatype.org/vulnerability/CVE-2023-33201?component-type=maven&component-name=org.bouncycastle%2Fbcprov-jdk18on&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1>* >> >> >> *at* org.sonatype.ossindex.maven.plugin.AuditMojoSupport.execute ( >> *AuditMojoSupport.java:257*) >> >> *at* org.apache.maven.plugin.DefaultBuildPluginManager.executeMojo ( >> *DefaultBuildPluginManager.java:126*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.doExecute2 ( >> *MojoExecutor.java:328*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.doExecute ( >> *MojoExecutor.java:316*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.execute ( >> *MojoExecutor.java:212*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.execute ( >> *MojoExecutor.java:174*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.access$000 ( >> *MojoExecutor.java:75*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor$1.run ( >> *MojoExecutor.java:162*) >> >> *at* org.apache.maven.plugin.DefaultMojosExecutionStrategy.execute ( >> *DefaultMojosExecutionStrategy.java:39*) >> >> *at* org.apache.maven.lifecycle.internal.MojoExecutor.execute ( >> *MojoExecutor.java:159*) >> >> *at* >> org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject >> (*LifecycleModuleBuilder.java:105*) >> >> *at* >> org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject >> (*LifecycleModuleBuilder.java:73*) >> >> >> *at*org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build >> (*SingleThreadedBuilder.java:53*) >> >> *at* org.apache.maven.lifecycle.internal.LifecycleStarter.execute ( >> *LifecycleStarter.java:118*) >> >> *at* org.apache.maven.DefaultMaven.doExecute (*DefaultMaven.java:261* >> ) >> >> *at* org.apache.maven.DefaultMaven.doExecute (*DefaultMaven.java:173* >> ) >> >> *at* org.apache.maven.DefaultMaven.execute (*DefaultMaven.java:101*) >> >> *at* org.apache.maven.cli.MavenCli.execute (*MavenCli.java:906*) >> >> *at* org.apache.maven.cli.MavenCli.doMain (*MavenCli.java:283*) >> >> *at* org.apache.maven.cli.MavenCli.main (*MavenCli.java:206*) >> >> *at* jdk.internal.reflect.NativeMethodAccessorImpl.invoke0 (*Native >> Method*) >> >> *at* jdk.internal.reflect.NativeMethodAccessorImpl.invoke ( >> *NativeMethodAccessorImpl.java:77*) >> >> *at* jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke ( >> *DelegatingMethodAccessorImpl.java:43*) >> >> *at* java.lang.reflect.Method.invoke (*Method.java:568*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced >> (*Launcher.java:283*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.launch ( >> *Launcher.java:226*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode >> (*Launcher.java:407*) >> >> *at* org.codehaus.plexus.classworlds.launcher.Launcher.main ( >> *Launcher.java:348*) >> >> [*ERROR*] >> >> [*ERROR*] Re-run Maven using the *-X* switch to enable full debug >> logging. >> >> [*ERROR*] >> >> [*ERROR*] For more information about the errors and possible solutions, >> please read the following articles: >> >> [*ERROR*] *[Help 1]* >> http://cwiki.apache.org/confluence/display/MAVEN/MojoFailureException >> >> [*ERROR*] >> >> [*ERROR*] After correcting the problems, you can resume the build with >> the command >> >> [*ERROR*] *mvn <args> -rf :tika-parser-digest-commons* >> >> >> Is it good to go for lower version of tika or anyway to avoid these > errors with skipTests option? > > > <org.apache.tika.dl.imagerec.DL4JVGG16NetTest.txt> > <TEST-org.apache.tika.dl.imagerec.DL4JInceptionV3NetTest.xml> > <TEST-org.apache.tika.dl.imagerec.DL4JVGG16NetTest.xml> > <org.apache.tika.dl.imagerec.DL4JInceptionV3NetTest.txt> > > >> >> Is there something missing in those files? >> Please let me know, >> >> Regards, >> Vijaya >> >>
