dependency-check-gradle icon indicating copy to clipboard operation
dependency-check-gradle copied to clipboard

Published 20 hours ago verified publisher icon dependency-check

Add option to suppress failures

Open hypery2k opened this issue 7 years ago • 5 comments

Would be great a have a option to not fail the build, something like ignoreBuildStatus at this point.

If needed I can add a PR for this.

hypery2k avatar Oct 16 '18 11:10 hypery2k

The option already exists (failOnError). See the ODC gradle documentation for more info.

dependencyCheck {
   failOnError = false
}

jeremylong avatar Oct 19 '18 09:10 jeremylong

thanks for the reply. I know this one, but if the vulnerabilities exceeds the threshold in my project the build fails even if i set this to false

hypery2k avatar Oct 19 '18 16:10 hypery2k

Just getting back to this - instead of a new ignoreBuildStatus wouldn't just setting failBuildOnCVSS=11 work to disable this build failure?

jeremylong avatar Jan 01 '19 15:01 jeremylong

mmh i want something like a dry run, keeping my current cvss threshold and logging the results silently. But when failBuildOnCVSS 11 set I modify my threshold

hypery2k avatar Jan 01 '19 15:01 hypery2k