sbt-dependency-check
sbt-dependency-check copied to clipboard
albuch
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:
## Fixes Issue # Upgrades to ODC v9.0.4 and the NVD API v2 (see #314). Use without an NVD API key would otherwise be throttled (if not eventually dropped). ##...
## About this PR 📦 Updates [org.xerial.sbt:sbt-sonatype](https://github.com/xerial/sbt-sonatype) from `3.9.21` to `3.10.0` 📜 [GitHub Release Notes](https://github.com/xerial/sbt-sonatype/releases/tag/v3.10.0) - [Release Notes](https://github.com/xerial/sbt-sonatype/blob/master/ReleaseNotes.md) - [Version Diff](https://github.com/xerial/sbt-sonatype/compare/v3.9.21...v3.10.0) ## Usage ✅ **Please merge!** I'll automatically update this...
## About this PR 📦 Updates [org.owasp:dependency-check-core](https://github.com/jeremylong/DependencyCheck/tree/main/core) from `8.1.2` to `8.4.3` ## Usage ✅ **Please merge!** I'll automatically update this PR to resolve conflicts as long as you don't change...
## Fixes Issue # ## Description of Change Introduces a new task that checks the false positive xml file in order to list unnecessary suppressions ## Have test cases been...
So the background context of this ticket is that I am trying to integrate https://github.com/albuch/sbt-dependency-check into Pekko https://github.com/apache/incubator-pekko/pull/289 . Originally the integration is meant to be a simple one that...
## About this PR 📦 Updates org.slf4j:slf4j-simple from `2.0.9` to `2.0.13` ## Usage ✅ **Please merge!** I'll automatically update this PR to resolve conflicts as long as you don't change...
## About this PR 📦 Updates [org.xerial.sbt:sbt-sonatype](https://github.com/xerial/sbt-sonatype) from `3.9.21` to `3.11.0` 📜 [GitHub Release Notes](https://github.com/xerial/sbt-sonatype/releases/tag/v3.11.0) - [Release Notes](https://github.com/xerial/sbt-sonatype/blob/master/ReleaseNotes.md) - [Version Diff](https://github.com/xerial/sbt-sonatype/compare/v3.9.21...v3.11.0) ## Usage ✅ **Please merge!** I'll automatically update this...
## About this PR 📦 Updates [org.xerial.sbt:sbt-sonatype](https://github.com/xerial/sbt-sonatype) from `3.9.21` to `3.11.3` 📜 [GitHub Release Notes](https://github.com/xerial/sbt-sonatype/releases/tag/v3.11.3) - [Release Notes](https://github.com/xerial/sbt-sonatype/blob/master/ReleaseNotes.md) - [Version Diff](https://github.com/xerial/sbt-sonatype/compare/v3.9.21...v3.11.3) ## Usage ✅ **Please merge!** I'll automatically update this...
## About this PR 📦 Updates org.slf4j:slf4j-simple from `2.0.9` to `2.0.16` ## Usage ✅ **Please merge!** I'll automatically update this PR to resolve conflicts as long as you don't change...
## About this PR 📦 Updates [org.xerial.sbt:sbt-sonatype](https://github.com/xerial/sbt-sonatype) from `3.9.21` to `3.12.2` 📜 [GitHub Release Notes](https://github.com/xerial/sbt-sonatype/releases/tag/v3.12.2) - [Release Notes](https://github.com/xerial/sbt-sonatype/blob/master/ReleaseNotes.md) - [Version Diff](https://github.com/xerial/sbt-sonatype/compare/v3.9.21...v3.12.2) ## Usage ✅ **Please merge!** I'll automatically update this...