From 4bda5b619de995fad7ecb36ae8c4e972bb569601 Mon Sep 17 00:00:00 2001 From: Jeremy Long Date: Mon, 27 May 2013 19:56:19 -0400 Subject: [PATCH] added supresswarnings for findbugs false positive Former-commit-id: 6fd172530338f4fc22777eab7a36465be7d12119 --- .../java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java b/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java index c1299bf2a..3ab493820 100644 --- a/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java +++ b/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java @@ -219,6 +219,9 @@ public class JarAnalyzer extends AbstractAnalyzer implements Analyzer { * pom. * @return whether or not evidence was added to the dependency */ + @edu.umd.cs.findbugs.annotations.SuppressWarnings( + value = "OS_OPEN_STREAM", + justification = "The reader on line 259 is closed by closing the zipEntry") protected boolean analyzePOM(Dependency dependency) throws IOException, AnalysisException { boolean foundSomething = false; Properties pomProperties = null;