github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-15 00:03:43 +01:00
Code Issues Packages Projects Releases Wiki Activity

updated documentation to demonstrate a very basic configuration

Browse Source 
Former-commit-id: 52683780d58dabc58758e90468429c1bc596bb7e
This commit is contained in:
Jeremy Long
2013-12-14 13:19:57 -05:00
parent 899f5231b5
commit 26c30b013b
1 changed files with 27 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

31
dependency-check-maven/src/site/markdown/usage.md.vm
View File

@@ -12,6 +12,33 @@ seven days the update will only take a few seconds.
### Create the DependencyCheck-report.html in the target directory
```xml
<project>
<build>
<plugins>
...
<plugin>
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
<version>${project.version}</version>
<executions>
<execution>
<goals>
<goal>check</goal>
</goals>
</execution>
</executions>
</plugin>
...
</plugins>
...
</build>
...
</project>
```
### Create the DependencyCheck-report.html and fail the build for CVSS greater then 8
```xml
<project>
<build>
@@ -40,10 +67,6 @@ seven days the update will only take a few seconds.
</project>
```
Note, the above configuration will fail the build if any dependencies are found
to have vulnerabilities with a CVSS score greater then 8. If you do not wish to
fail the build for CVSS scores do not specify the failBuildOnCVSS element.
### Create the dependency-check report within the site
```xml