albuch/sbt-dependency-check

Issues

• Upgrade to OWASP DependencyCheck v9.0.1

  #314 opened a year ago by costas80
  5

• Document how to cache NVD database for usage in CI (i.e. github actions)

  #305 opened 2 years ago by mdedetrich
  0

• Upgrade to dc-core v8.1.0

  #293 opened 2 years ago by albuch
  0

• Upstream DependencyCheck bug causes exceptions (fixed in DependencyCheck 7.4.4)

  #282 opened 2 years ago by davidcheney-livongo
  1

• Migrate away from setup-scala action

  #271 opened 2 years ago by albuch
  1

• Implement Scala Steward Github Action

  #254 opened 2 years ago by albuch
  1

• Failure to create report with NullPointerException on a minimal project

  #253 opened 2 years ago by nespera
  4

• How to disable Central search?

  #243 opened 3 years ago by itsecforu
  0

• Failure summary is not shown

  #224 opened 3 years ago by gervaisb
  3

• Update dependency-check-core to v7.0.0

  #241 opened 3 years ago by albuch
  4

• dependencyCheckSuppressionFile doesn't seem to do anything

  #237 opened 3 years ago by mdedetrich
  2

• Error when updating sbt-dependency-check above 3.1.3 with sbt 1.2.8

  #234 opened 3 years ago by hmarzooq
  3

• Upgrade to dependency-check-core v6.5.3

  #215 opened 3 years ago by albuch
  0

• Skip vulnerabilities scan

  #218 opened 3 years ago by andeliero
  2

• Update dependency-check-core to v6.4.1

  #212 opened 3 years ago by albuch
  1

• Support NIST API key

  #210 opened 3 years ago by magJ
  0

• Please release a version based on DependencyCheck 6.1.6

  #186 opened 4 years ago by nespera
  1

• Build Cache doesn't seem to work for DC database

  #182 opened 4 years ago by albuch
  1

• Move to Github Actions

  #171 opened 4 years ago by albuch
  1

• false positive: com.softwaremill.sttp.client/async-http-client-backend_2.11@2.0.7

  #138 opened 4 years ago by jaymeyer
  2

• dependencyCheckYarnAuditAnalyzerEnabled set to Some(false) does not have any effect

  #163 opened 4 years ago by iadcode
  2

• Update dependency-check-core to v6.1.0

  #159 opened 4 years ago by albuch
  0

• Update License notices

  #150 opened 4 years ago by albuch
  0

• .NET Assembly Analyzer could not be initialized

  #152 opened 4 years ago by himnsuk
  2

• Usage of inAnyProject filter confusing in dependencyCheckAggregate

  #95 opened 5 years ago by AndyKirsch
  7

• Support providing settings via Global and ThisBuild

  #100 opened 4 years ago by nigredo-tori
  8

• `dependencyCheckAggregate` assumes that all aggregate projects have `externalDependencyClasspath`

  #122 opened 4 years ago by nigredo-tori
  4

• Plugin version 2.1.0 is crashing will null pointer exception when generating report

  #145 opened 4 years ago by lawrenceong
  3

• Update dependency-check-core to v6.0.2

  #121 opened 4 years ago by albuch
  0

• Update dependency-check-core to v6.0.3

  #144 opened 4 years ago by albuch
  0

• Running test with dependencyCheck

  #101 opened 4 years ago by sfosdal
  5

• Logs of org.apache.commons.jcs running dependencyCheck

  #102 opened 4 years ago by reidrac
  3

• Augment Failure Report with first level dependency if transitive vulnerable dependency

  #132 opened 4 years ago by albuch
  0

• Speciying CveURLs

  #111 opened 5 years ago by abdulahjamak-abh
  1

• Log the full stack trace for ExceptionCollection

  #98 opened 5 years ago by nigredo-tori
  0

• Unable to download NVCDE meta file

  #83 opened 5 years ago by ronniegane
  4

• Incorrect setting name in documentation

  #76 opened 5 years ago by rafaelmagu
  1

• Unable to connect to the dependency-check database

  #81 opened 5 years ago by mgladdish
  6

• 1.3.1 breaks compatibility with SBT 1.2.8

  #87 opened 5 years ago by nigredo-tori
  4

• Update sbt-sonatype to v3.7

  #82 opened 5 years ago by albuch
  1

• Changing log level doesn't work for owasp dependency

  #67 opened 5 years ago by anilkumarmyla
  3

• Prepare for sbt 1.3.0

  #74 opened 5 years ago by albuch
  0

• Failing vulnerability producing incorrect/misleading vulnerability report

  #79 opened 5 years ago by cosmir17
  7

• No support for JSON feeds, XML feeds are being deprecated

  #69 opened 5 years ago by cmholley
  5

• Unable to delete the local copy of the NVD

  #71 opened 5 years ago by ghostbuster91
  6

• Prepare for v5.0.0-M3 release

  #70 opened 5 years ago by albuch
  1

• Update dependency-check-core to v4.0.1

  #65 opened 6 years ago by albuch
  1

• Override on guava still reported on avro-1.8.2.jar (shaded: com.google.guava:guava:11.0.2)

  #62 opened 6 years ago by reidrac
  5

• dependency check reports wrong version of dependency check?

  #64 opened 6 years ago by london-coder
  2

• Update dependency-check-core to v3.3.4

  #59 opened 6 years ago by albuch
  0