albuch/sbt-dependency-check
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:
ScalaApache-2.0
Issues
- 5
Upgrade to OWASP DependencyCheck v9.0.1
#314 opened by costas80 - 0
- 0
Upgrade to dc-core v8.1.0
#293 opened by albuch - 1
Upstream DependencyCheck bug causes exceptions (fixed in DependencyCheck 7.4.4)
#282 opened by davidcheney-livongo - 1
Migrate away from setup-scala action
#271 opened by albuch - 1
Implement Scala Steward Github Action
#254 opened by albuch - 4
- 0
How to disable Central search?
#243 opened by itsecforu - 3
Failure summary is not shown
#224 opened by gervaisb - 4
Update dependency-check-core to v7.0.0
#241 opened by albuch - 2
- 3
- 0
Upgrade to dependency-check-core v6.5.3
#215 opened by albuch - 2
Skip vulnerabilities scan
#218 opened by andeliero - 1
Update dependency-check-core to v6.4.1
#212 opened by albuch - 0
Support NIST API key
#210 opened by magJ - 1
- 1
Build Cache doesn't seem to work for DC database
#182 opened by albuch - 1
Move to Github Actions
#171 opened by albuch - 2
false positive: com.softwaremill.sttp.client/async-http-client-backend_2.11@2.0.7
#138 opened by jaymeyer - 2
dependencyCheckYarnAuditAnalyzerEnabled set to Some(false) does not have any effect
#163 opened by iadcode - 0
Update dependency-check-core to v6.1.0
#159 opened by albuch - 0
Update License notices
#150 opened by albuch - 2
.NET Assembly Analyzer could not be initialized
#152 opened by himnsuk - 7
- 8
- 4
`dependencyCheckAggregate` assumes that all aggregate projects have `externalDependencyClasspath`
#122 opened by nigredo-tori - 3
Plugin version 2.1.0 is crashing will null pointer exception when generating report
#145 opened by lawrenceong - 0
Update dependency-check-core to v6.0.2
#121 opened by albuch - 0
Update dependency-check-core to v6.0.3
#144 opened by albuch - 5
Running test with dependencyCheck
#101 opened by sfosdal - 3
- 0
Augment Failure Report with first level dependency if transitive vulnerable dependency
#132 opened by albuch - 1
Speciying CveURLs
#111 opened by abdulahjamak-abh - 0
- 4
Unable to download NVCDE meta file
#83 opened by ronniegane - 1
Incorrect setting name in documentation
#76 opened by rafaelmagu - 6
- 4
1.3.1 breaks compatibility with SBT 1.2.8
#87 opened by nigredo-tori - 1
Update sbt-sonatype to v3.7
#82 opened by albuch - 3
- 0
Prepare for sbt 1.3.0
#74 opened by albuch - 7
- 5
- 6
Unable to delete the local copy of the NVD
#71 opened by ghostbuster91 - 1
Prepare for v5.0.0-M3 release
#70 opened by albuch - 1
Update dependency-check-core to v4.0.1
#65 opened by albuch - 5
Override on guava still reported on avro-1.8.2.jar (shaded: com.google.guava:guava:11.0.2)
#62 opened by reidrac - 2
- 0
Update dependency-check-core to v3.3.4
#59 opened by albuch