patton icon indicating copy to clipboard operation
patton copied to clipboard

Published 20 hours ago verified publisher icon BBVA

Java raw dependency parser

Open cr0hn opened this issue 4 years ago • 1 comments

Add support for searching for vulnerabilities in Java projects.

First we have to resolve the final version of all the components on which the the project depends on. After that we need to map the library name and version to a CPE and finally search for vulnerabilities on those CPEs.

We need support for both Maven and Gradle.

cr0hn avatar Jan 21 '20 07:01 cr0hn

Add support to parse raw dependencies from Maven and Gradle

cr0hn avatar Jan 21 '20 07:01 cr0hn