nvd-clojure icon indicating copy to clipboard operation
nvd-clojure copied to clipboard

Published 20 hours ago verified publisher icon rm-hull

Upgrade to the latest dependency-check-core version: 10.0.3

Open alinposho opened this issue 1 year ago • 3 comments

  • Due to https://github.com/jeremylong/DependencyCheck/issues/6817 we need to uptake the mandatory upgrade to dependency-check-core 10.0.2 (or later) for the dependency check to work.

alinposho avatar Aug 02 '24 13:08 alinposho

See related issue: https://github.com/rm-hull/nvd-clojure/issues/180

alinposho avatar Aug 02 '24 13:08 alinposho

I've tested this locally and with this change the nvd-clojure check works, whereas, with the version that is in main I was not able to get past the 403 or 404 even though I am using a valid API key.

alinposho avatar Aug 02 '24 13:08 alinposho

Thanks for the issue and PR!

At the moment I don't have the bandwidth to do releases with the level of assurance I'd want.

As noted in https://github.com/rm-hull/nvd-clojure/issues/178 you can update dependencycheck locally and is what I'd recommend for the time being.

Cheers - V

vemv avatar Aug 02 '24 13:08 vemv

We've now released v5.0.0 that depends on dependency-check-core v12.1.0, so I'm closing this.

tobias avatar Mar 26 '25 08:03 tobias