[Project] Updated initial dependency-check suppressions
This commit is contained in:
parent
7384fa6d85
commit
fa57bf213f
34
pom.xml
34
pom.xml
|
@ -146,6 +146,9 @@
|
||||||
<tomcat7ServerId>NOT_SET</tomcat7ServerId>
|
<tomcat7ServerId>NOT_SET</tomcat7ServerId>
|
||||||
<gpg.keyname>NOT_SET</gpg.keyname>
|
<gpg.keyname>NOT_SET</gpg.keyname>
|
||||||
|
|
||||||
|
<!--suppress UnresolvedMavenProperty -->
|
||||||
|
<dependency-check-suppressions-file>${maven.multiModuleProjectDirectory}/src/dependency-check/suppressions.xml</dependency-check-suppressions-file>
|
||||||
|
|
||||||
</properties>
|
</properties>
|
||||||
|
|
||||||
<modules>
|
<modules>
|
||||||
|
@ -476,6 +479,7 @@
|
||||||
<configuration>
|
<configuration>
|
||||||
<failBuildOnCVSS>8</failBuildOnCVSS>
|
<failBuildOnCVSS>8</failBuildOnCVSS>
|
||||||
<yarnAuditAnalyzerEnabled>false</yarnAuditAnalyzerEnabled>
|
<yarnAuditAnalyzerEnabled>false</yarnAuditAnalyzerEnabled>
|
||||||
|
<suppressionFiles>${dependency-check-suppressions-file}</suppressionFiles>
|
||||||
</configuration>
|
</configuration>
|
||||||
<executions>
|
<executions>
|
||||||
<execution>
|
<execution>
|
||||||
|
@ -679,20 +683,6 @@
|
||||||
<groupId>org.codehaus.mojo</groupId>
|
<groupId>org.codehaus.mojo</groupId>
|
||||||
<artifactId>versions-maven-plugin</artifactId>
|
<artifactId>versions-maven-plugin</artifactId>
|
||||||
</plugin>
|
</plugin>
|
||||||
<!--
|
|
||||||
<plugin>
|
|
||||||
<groupId>org.owasp</groupId>
|
|
||||||
<artifactId>dependency-check-maven</artifactId>
|
|
||||||
<version>1.4.5</version>
|
|
||||||
<executions>
|
|
||||||
<execution>
|
|
||||||
<goals>
|
|
||||||
<goal>check</goal>
|
|
||||||
</goals>
|
|
||||||
</execution>
|
|
||||||
</executions>
|
|
||||||
</plugin>
|
|
||||||
-->
|
|
||||||
</plugins>
|
</plugins>
|
||||||
|
|
||||||
</build>
|
</build>
|
||||||
|
@ -800,6 +790,22 @@
|
||||||
</reportSet>
|
</reportSet>
|
||||||
</reportSets>
|
</reportSets>
|
||||||
</plugin>
|
</plugin>
|
||||||
|
<plugin>
|
||||||
|
<groupId>org.owasp</groupId>
|
||||||
|
<artifactId>dependency-check-maven</artifactId>
|
||||||
|
<configuration>
|
||||||
|
<failBuildOnCVSS>8</failBuildOnCVSS>
|
||||||
|
<yarnAuditAnalyzerEnabled>false</yarnAuditAnalyzerEnabled>
|
||||||
|
<suppressionFiles>${dependency-check-suppressions-file}</suppressionFiles>
|
||||||
|
</configuration>
|
||||||
|
<reportSets>
|
||||||
|
<reportSet>
|
||||||
|
<reports>
|
||||||
|
<report>aggregate</report>
|
||||||
|
</reports>
|
||||||
|
</reportSet>
|
||||||
|
</reportSets>
|
||||||
|
</plugin>
|
||||||
</plugins>
|
</plugins>
|
||||||
</reporting>
|
</reporting>
|
||||||
|
|
||||||
|
|
|
@ -0,0 +1,8 @@
|
||||||
|
<?xml version="1.0" encoding="UTF-8"?>
|
||||||
|
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
|
||||||
|
<suppress>
|
||||||
|
<notes><![CDATA[file name: li.strolch.persistence.postgresql-1.8.0-SNAPSHOT.jar]]></notes>
|
||||||
|
<packageUrl regex="true">^pkg:maven/li\.strolch/li\.strolch\.persistence\.postgresql@.*$</packageUrl>
|
||||||
|
<cpe>cpe:/a:postgresql:postgresql</cpe>
|
||||||
|
</suppress>
|
||||||
|
</suppressions>
|
Loading…
Reference in New Issue