github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-18 15:24:13 +01:00
Code Issues Packages Projects Releases Wiki Activity

added vulnerable software

Browse Source 
Former-commit-id: dd4b3a9e06bb33e4f895565bec4588a8b38f6f5d
This commit is contained in:
Jeremy Long
2013-04-18 06:24:40 -04:00
parent a3012a29c2
commit 1ded1b603e
1 changed files with 39 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

74
src/main/resources/templates/XmlReport.vsl
View File

@@ -26,58 +26,57 @@ Copyright (c) 2012 Jeremy Long. All Rights Reserved.
<reportDate>$date</reportDate> <reportDate>$date</reportDate>
</projectInfo> </projectInfo>
<dependencies> <dependencies>
#foreach($dependency in $dependencies) #foreach($dependency in $dependencies)
<dependency> <dependency>
<fileName>$esc.html($dependency.FileName)</fileName> <fileName>$esc.html($dependency.FileName)</fileName>
<filePath>$esc.html($dependency.FilePath)</filePath> <filePath>$esc.html($dependency.FilePath)</filePath>
<md5>$esc.html($dependency.Md5sum)</md5> <md5>$esc.html($dependency.Md5sum)</md5>
<sha1>$esc.html($dependency.Sha1sum)</sha1> <sha1>$esc.html($dependency.Sha1sum)</sha1>
#if ($dependency.description) #if ($dependency.description)
<description>$esc.html($dependency.description)</description> <description>$esc.html($dependency.description)</description>
#end #end
#if ($dependency.license) #if ($dependency.license)
<license>$esc.html($dependency.license)</license> <license>$esc.html($dependency.license)</license>
#end #end
#if ( $dependency.analysisExceptions.size() != 0 ) #if ( $dependency.analysisExceptions.size() != 0 )
<analysisExceptions> <analysisExceptions>
#foreach($ex in $dependency.analysisExceptions) #foreach($ex in $dependency.analysisExceptions)
<exception> <exception>
<message>$esc.html($ex.message)</message> <message>$esc.html($ex.message)</message>
#if ( $ex.stackTrace ) #if ( $ex.stackTrace )
<stackTrace> <stackTrace>
#foreach ($st in $ex.stackTrace) #foreach ($st in $ex.stackTrace)
<trace>$esc.html($st)</trace> <trace>$esc.html($st)</trace>
#end #end
</stackTrace> </stackTrace>
#end #end
#if ( $ex.cause )
#if ( $ex.cause )
<innerException> <innerException>
<message>$esc.html($ex.cause.message)</message> <message>$esc.html($ex.cause.message)</message>
#if ( $ex.cause.stackTrace ) #if ( $ex.cause.stackTrace )
<stackTrace> <stackTrace>
#foreach ($st in $ex.cause.stackTrace) #foreach ($st in $ex.cause.stackTrace)
<trace>$esc.html($st)</trace> <trace>$esc.html($st)</trace>
#end #end
</stackTrace> </stackTrace>
#end #end
</innerException> </innerException>
#end #end
</exception> </exception>
#end #end
</analysisExceptions> </analysisExceptions>
#end #end
<evidenceCollected> <evidenceCollected>
#foreach($evidence in $dependency.getEvidenceUsed()) #foreach($evidence in $dependency.getEvidenceUsed())
<evidence> <evidence>
<source>$esc.html($evidence.getSource())</source> <source>$esc.html($evidence.getSource())</source>
<name>$esc.html($evidence.getName())</name> <name>$esc.html($evidence.getName())</name>
<value>$esc.html($evidence.getValue())</value> <value>$esc.html($evidence.getValue())</value>
</evidence> </evidence>
#end #end
</evidenceCollected> </evidenceCollected>
<identifiers> <identifiers>
#foreach($id in $dependency.getIdentifiers()) #foreach($id in $dependency.getIdentifiers())
<identifier type="$esc.html($id.type)"> <identifier type="$esc.html($id.type)">
<name>$esc.html($id.value)</name> <name>$esc.html($id.value)</name>
<url>$esc.html($id.url)</url> <url>$esc.html($id.url)</url>
@@ -85,37 +84,42 @@ Copyright (c) 2012 Jeremy Long. All Rights Reserved.
<description>$esc.html($id.description)</description>> <description>$esc.html($id.description)</description>>
#end #end
</identifier> </identifier>
#end #end
</identifiers> </identifiers>
<vulnerabilities> <vulnerabilities>
#foreach($vuln in $dependency.getVulnerabilities()) #foreach($vuln in $dependency.getVulnerabilities())
<vulnerability> <vulnerability>
<name>$esc.html($vuln.name)</name> <name>$esc.html($vuln.name)</name>
<cvssScore>$vuln.cvssScore</cvssScore> <cvssScore>$vuln.cvssScore</cvssScore>
#if ($vuln.cvssScore<4.0) #if ($vuln.cvssScore<4.0)
<severity>Low</severity> <severity>Low</severity>
#elseif ($vuln.cvssScore>=7.0) #elseif ($vuln.cvssScore>=7.0)
<severity>High</severity> <severity>High</severity>
#else #else
<severity>Medium</severity> <severity>Medium</severity>
#end #end
#if ($vuln.cwe) #if ($vuln.cwe)
<cwe>$esc.html($vuln.cwe)</cwe> <cwe>$esc.html($vuln.cwe)</cwe>
#end #end
<description>$esc.html($vuln.description)</description> <description>$esc.html($vuln.description)</description>
<references> <references>
#foreach($ref in $vuln.getReferences()) #foreach($ref in $vuln.getReferences())
<reference> <reference>
<source>$esc.html($ref.source)</source> <source>$esc.html($ref.source)</source>
<url>$esc.html($ref.url)</url> <url>$esc.html($ref.url)</url>
<name>$ref.name</name> <name>$ref.name</name>
</reference> </reference>
#end #end
</references> </references>
<vulnerableSoftware>
#foreach($vs in $vuln.getVulnerableSoftware())
<software#if($vs.hasPreviousVersion()) allPreviousVersion="true"#end>$esc.html($vs.name)</software>
#end
</vulnerableSoftware>
</vulnerability> </vulnerability>
#end #end
</vulnerabilities> </vulnerabilities>
#end #end
</dependency> </dependency>
</dependencies> </dependencies>
</analysis> </analysis>