github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-17 23:04:07 +01:00
Code Issues Packages Projects Releases Wiki Activity

added supresswarnings for findbugs false positive

Browse Source 
Former-commit-id: 6fd172530338f4fc22777eab7a36465be7d12119
This commit is contained in:
Jeremy Long
2013-05-27 19:56:19 -04:00
parent a0645ea30f
commit 4bda5b619d
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java
View File

@@ -219,6 +219,9 @@ public class JarAnalyzer extends AbstractAnalyzer implements Analyzer {
* pom. * pom.
* @return whether or not evidence was added to the dependency * @return whether or not evidence was added to the dependency
*/ */
@edu.umd.cs.findbugs.annotations.SuppressWarnings(
value = "OS_OPEN_STREAM",
justification = "The reader on line 259 is closed by closing the zipEntry")
protected boolean analyzePOM(Dependency dependency) throws IOException, AnalysisException { protected boolean analyzePOM(Dependency dependency) throws IOException, AnalysisException {
boolean foundSomething = false; boolean foundSomething = false;
Properties pomProperties = null; Properties pomProperties = null;