github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-25 18:41:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

documentation version 1.4.5

Browse Source
This commit is contained in:
Jeremy Long
2017-01-22 17:22:46 -05:00
parent a1b5e3f7b0
commit 615f6e3750
1583 changed files with 55974 additions and 52631 deletions
Download Patch File Download Diff File Expand all files Collapse all files

128
xref/org/owasp/dependencycheck/data/central/CentralSearch.html
View File

@@ -32,13 +32,13 @@
<a class="jxr_linenumber" name="L24" href="#L24">24</a> <strong class="jxr_keyword">import</strong> java.util.ArrayList;
<a class="jxr_linenumber" name="L25" href="#L25">25</a> <strong class="jxr_keyword">import</strong> java.util.List;
<a class="jxr_linenumber" name="L26" href="#L26">26</a> <strong class="jxr_keyword">import</strong> javax.xml.parsers.DocumentBuilder;
<a class="jxr_linenumber" name="L27" href="#L27">27</a> <strong class="jxr_keyword">import</strong> javax.xml.parsers.DocumentBuilderFactory;
<a class="jxr_linenumber" name="L28" href="#L28">28</a> <strong class="jxr_keyword">import</strong> javax.xml.xpath.XPath;
<a class="jxr_linenumber" name="L29" href="#L29">29</a> <strong class="jxr_keyword">import</strong> javax.xml.xpath.XPathConstants;
<a class="jxr_linenumber" name="L30" href="#L30">30</a> <strong class="jxr_keyword">import</strong> javax.xml.xpath.XPathFactory;
<a class="jxr_linenumber" name="L31" href="#L31">31</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.data.nexus.MavenArtifact;
<a class="jxr_linenumber" name="L32" href="#L32">32</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.utils.Settings;
<a class="jxr_linenumber" name="L33" href="#L33">33</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.utils.URLConnectionFactory;
<a class="jxr_linenumber" name="L27" href="#L27">27</a> <strong class="jxr_keyword">import</strong> javax.xml.xpath.XPath;
<a class="jxr_linenumber" name="L28" href="#L28">28</a> <strong class="jxr_keyword">import</strong> javax.xml.xpath.XPathConstants;
<a class="jxr_linenumber" name="L29" href="#L29">29</a> <strong class="jxr_keyword">import</strong> javax.xml.xpath.XPathFactory;
<a class="jxr_linenumber" name="L30" href="#L30">30</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.data.nexus.MavenArtifact;
<a class="jxr_linenumber" name="L31" href="#L31">31</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.utils.Settings;
<a class="jxr_linenumber" name="L32" href="#L32">32</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.utils.URLConnectionFactory;
<a class="jxr_linenumber" name="L33" href="#L33">33</a> <strong class="jxr_keyword">import</strong> org.owasp.dependencycheck.utils.XmlUtils;
<a class="jxr_linenumber" name="L34" href="#L34">34</a> <strong class="jxr_keyword">import</strong> org.slf4j.Logger;
<a class="jxr_linenumber" name="L35" href="#L35">35</a> <strong class="jxr_keyword">import</strong> org.slf4j.LoggerFactory;
<a class="jxr_linenumber" name="L36" href="#L36">36</a> <strong class="jxr_keyword">import</strong> org.w3c.dom.Document;
@@ -118,65 +118,63 @@
<a class="jxr_linenumber" name="L110" href="#L110">110</a> <strong class="jxr_keyword">if</strong> (conn.getResponseCode() == 200) {
<a class="jxr_linenumber" name="L111" href="#L111">111</a> <strong class="jxr_keyword">boolean</strong> missing = false;
<a class="jxr_linenumber" name="L112" href="#L112">112</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="L113" href="#L113">113</a> <strong class="jxr_keyword">final</strong> DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
<a class="jxr_linenumber" name="L114" href="#L114">114</a> factory.setFeature(<span class="jxr_string">"http://apache.org/xml/features/disallow-doctype-decl"</span>, <strong class="jxr_keyword">true</strong>);
<a class="jxr_linenumber" name="L115" href="#L115">115</a> <strong class="jxr_keyword">final</strong> DocumentBuilder builder = factory.newDocumentBuilder();
<a class="jxr_linenumber" name="L116" href="#L116">116</a> <strong class="jxr_keyword">final</strong> Document doc = builder.parse(conn.getInputStream());
<a class="jxr_linenumber" name="L117" href="#L117">117</a> <strong class="jxr_keyword">final</strong> XPath xpath = XPathFactory.newInstance().newXPath();
<a class="jxr_linenumber" name="L118" href="#L118">118</a> <strong class="jxr_keyword">final</strong> String numFound = xpath.evaluate(<span class="jxr_string">"/response/result/@numFound"</span>, doc);
<a class="jxr_linenumber" name="L119" href="#L119">119</a> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">"0"</span>.equals(numFound)) {
<a class="jxr_linenumber" name="L120" href="#L120">120</a> missing = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L121" href="#L121">121</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="L122" href="#L122">122</a> result = <strong class="jxr_keyword">new</strong> ArrayList&lt;MavenArtifact&gt;();
<a class="jxr_linenumber" name="L123" href="#L123">123</a> <strong class="jxr_keyword">final</strong> NodeList docs = (NodeList) xpath.evaluate(<span class="jxr_string">"/response/result/doc"</span>, doc, XPathConstants.NODESET);
<a class="jxr_linenumber" name="L124" href="#L124">124</a> <strong class="jxr_keyword">for</strong> (<strong class="jxr_keyword">int</strong> i = 0; i &lt; docs.getLength(); i++) {
<a class="jxr_linenumber" name="L125" href="#L125">125</a> <strong class="jxr_keyword">final</strong> String g = xpath.evaluate(<span class="jxr_string">"./str[@name='g']"</span>, docs.item(i));
<a class="jxr_linenumber" name="L126" href="#L126">126</a> LOGGER.trace(<span class="jxr_string">"GroupId: {}"</span>, g);
<a class="jxr_linenumber" name="L127" href="#L127">127</a> <strong class="jxr_keyword">final</strong> String a = xpath.evaluate(<span class="jxr_string">"./str[@name='a']"</span>, docs.item(i));
<a class="jxr_linenumber" name="L128" href="#L128">128</a> LOGGER.trace(<span class="jxr_string">"ArtifactId: {}"</span>, a);
<a class="jxr_linenumber" name="L129" href="#L129">129</a> <strong class="jxr_keyword">final</strong> String v = xpath.evaluate(<span class="jxr_string">"./str[@name='v']"</span>, docs.item(i));
<a class="jxr_linenumber" name="L130" href="#L130">130</a> NodeList atts = (NodeList) xpath.evaluate(<span class="jxr_string">"./arr[@name='ec']/str"</span>, docs.item(i), XPathConstants.NODESET);
<a class="jxr_linenumber" name="L131" href="#L131">131</a> <strong class="jxr_keyword">boolean</strong> pomAvailable = false;
<a class="jxr_linenumber" name="L132" href="#L132">132</a> <strong class="jxr_keyword">boolean</strong> jarAvailable = false;
<a class="jxr_linenumber" name="L133" href="#L133">133</a> <strong class="jxr_keyword">for</strong> (<strong class="jxr_keyword">int</strong> x = 0; x &lt; atts.getLength(); x++) {
<a class="jxr_linenumber" name="L134" href="#L134">134</a> <strong class="jxr_keyword">final</strong> String tmp = xpath.evaluate(<span class="jxr_string">"."</span>, atts.item(x));
<a class="jxr_linenumber" name="L135" href="#L135">135</a> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">".pom"</span>.equals(tmp)) {
<a class="jxr_linenumber" name="L136" href="#L136">136</a> pomAvailable = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L137" href="#L137">137</a> } <strong class="jxr_keyword">else</strong> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">".jar"</span>.equals(tmp)) {
<a class="jxr_linenumber" name="L138" href="#L138">138</a> jarAvailable = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L139" href="#L139">139</a> }
<a class="jxr_linenumber" name="L140" href="#L140">140</a> }
<a class="jxr_linenumber" name="L141" href="#L141">141</a>
<a class="jxr_linenumber" name="L142" href="#L142">142</a> atts = (NodeList) xpath.evaluate(<span class="jxr_string">"./arr[@name='tags']/str"</span>, docs.item(i), XPathConstants.NODESET);
<a class="jxr_linenumber" name="L143" href="#L143">143</a> <strong class="jxr_keyword">boolean</strong> useHTTPS = false;
<a class="jxr_linenumber" name="L144" href="#L144">144</a> <strong class="jxr_keyword">for</strong> (<strong class="jxr_keyword">int</strong> x = 0; x &lt; atts.getLength(); x++) {
<a class="jxr_linenumber" name="L145" href="#L145">145</a> <strong class="jxr_keyword">final</strong> String tmp = xpath.evaluate(<span class="jxr_string">"."</span>, atts.item(x));
<a class="jxr_linenumber" name="L146" href="#L146">146</a> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">"https"</span>.equals(tmp)) {
<a class="jxr_linenumber" name="L147" href="#L147">147</a> useHTTPS = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L148" href="#L148">148</a> }
<a class="jxr_linenumber" name="L149" href="#L149">149</a> }
<a class="jxr_linenumber" name="L150" href="#L150">150</a> LOGGER.trace(<span class="jxr_string">"Version: {}"</span>, v);
<a class="jxr_linenumber" name="L151" href="#L151">151</a> result.add(<strong class="jxr_keyword">new</strong> <a href="../../../../../org/owasp/dependencycheck/data/nexus/MavenArtifact.html">MavenArtifact</a>(g, a, v, jarAvailable, pomAvailable, useHTTPS));
<a class="jxr_linenumber" name="L152" href="#L152">152</a> }
<a class="jxr_linenumber" name="L153" href="#L153">153</a> }
<a class="jxr_linenumber" name="L154" href="#L154">154</a> } <strong class="jxr_keyword">catch</strong> (Throwable e) {
<a class="jxr_linenumber" name="L155" href="#L155">155</a> <em class="jxr_comment">// Anything else is jacked up XML stuff that we really can't recover from well</em>
<a class="jxr_linenumber" name="L156" href="#L156">156</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> IOException(e.getMessage(), e);
<a class="jxr_linenumber" name="L157" href="#L157">157</a> }
<a class="jxr_linenumber" name="L158" href="#L158">158</a>
<a class="jxr_linenumber" name="L159" href="#L159">159</a> <strong class="jxr_keyword">if</strong> (missing) {
<a class="jxr_linenumber" name="L160" href="#L160">160</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> FileNotFoundException(<span class="jxr_string">"Artifact not found in Central"</span>);
<a class="jxr_linenumber" name="L161" href="#L161">161</a> }
<a class="jxr_linenumber" name="L162" href="#L162">162</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="L163" href="#L163">163</a> LOGGER.debug(<span class="jxr_string">"Could not connect to Central received response code: {} {}"</span>,
<a class="jxr_linenumber" name="L164" href="#L164">164</a> conn.getResponseCode(), conn.getResponseMessage());
<a class="jxr_linenumber" name="L165" href="#L165">165</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> IOException(<span class="jxr_string">"Could not connect to Central"</span>);
<a class="jxr_linenumber" name="L166" href="#L166">166</a> }
<a class="jxr_linenumber" name="L167" href="#L167">167</a> <strong class="jxr_keyword">return</strong> result;
<a class="jxr_linenumber" name="L168" href="#L168">168</a> }
<a class="jxr_linenumber" name="L169" href="#L169">169</a> }
<a class="jxr_linenumber" name="L113" href="#L113">113</a> <strong class="jxr_keyword">final</strong> DocumentBuilder builder = XmlUtils.buildSecureDocumentBuilder();
<a class="jxr_linenumber" name="L114" href="#L114">114</a> <strong class="jxr_keyword">final</strong> Document doc = builder.parse(conn.getInputStream());
<a class="jxr_linenumber" name="L115" href="#L115">115</a> <strong class="jxr_keyword">final</strong> XPath xpath = XPathFactory.newInstance().newXPath();
<a class="jxr_linenumber" name="L116" href="#L116">116</a> <strong class="jxr_keyword">final</strong> String numFound = xpath.evaluate(<span class="jxr_string">"/response/result/@numFound"</span>, doc);
<a class="jxr_linenumber" name="L117" href="#L117">117</a> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">"0"</span>.equals(numFound)) {
<a class="jxr_linenumber" name="L118" href="#L118">118</a> missing = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L119" href="#L119">119</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="L120" href="#L120">120</a> result = <strong class="jxr_keyword">new</strong> ArrayList&lt;MavenArtifact&gt;();
<a class="jxr_linenumber" name="L121" href="#L121">121</a> <strong class="jxr_keyword">final</strong> NodeList docs = (NodeList) xpath.evaluate(<span class="jxr_string">"/response/result/doc"</span>, doc, XPathConstants.NODESET);
<a class="jxr_linenumber" name="L122" href="#L122">122</a> <strong class="jxr_keyword">for</strong> (<strong class="jxr_keyword">int</strong> i = 0; i &lt; docs.getLength(); i++) {
<a class="jxr_linenumber" name="L123" href="#L123">123</a> <strong class="jxr_keyword">final</strong> String g = xpath.evaluate(<span class="jxr_string">"./str[@name='g']"</span>, docs.item(i));
<a class="jxr_linenumber" name="L124" href="#L124">124</a> LOGGER.trace(<span class="jxr_string">"GroupId: {}"</span>, g);
<a class="jxr_linenumber" name="L125" href="#L125">125</a> <strong class="jxr_keyword">final</strong> String a = xpath.evaluate(<span class="jxr_string">"./str[@name='a']"</span>, docs.item(i));
<a class="jxr_linenumber" name="L126" href="#L126">126</a> LOGGER.trace(<span class="jxr_string">"ArtifactId: {}"</span>, a);
<a class="jxr_linenumber" name="L127" href="#L127">127</a> <strong class="jxr_keyword">final</strong> String v = xpath.evaluate(<span class="jxr_string">"./str[@name='v']"</span>, docs.item(i));
<a class="jxr_linenumber" name="L128" href="#L128">128</a> NodeList atts = (NodeList) xpath.evaluate(<span class="jxr_string">"./arr[@name='ec']/str"</span>, docs.item(i), XPathConstants.NODESET);
<a class="jxr_linenumber" name="L129" href="#L129">129</a> <strong class="jxr_keyword">boolean</strong> pomAvailable = false;
<a class="jxr_linenumber" name="L130" href="#L130">130</a> <strong class="jxr_keyword">boolean</strong> jarAvailable = false;
<a class="jxr_linenumber" name="L131" href="#L131">131</a> <strong class="jxr_keyword">for</strong> (<strong class="jxr_keyword">int</strong> x = 0; x &lt; atts.getLength(); x++) {
<a class="jxr_linenumber" name="L132" href="#L132">132</a> <strong class="jxr_keyword">final</strong> String tmp = xpath.evaluate(<span class="jxr_string">"."</span>, atts.item(x));
<a class="jxr_linenumber" name="L133" href="#L133">133</a> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">".pom"</span>.equals(tmp)) {
<a class="jxr_linenumber" name="L134" href="#L134">134</a> pomAvailable = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L135" href="#L135">135</a> } <strong class="jxr_keyword">else</strong> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">".jar"</span>.equals(tmp)) {
<a class="jxr_linenumber" name="L136" href="#L136">136</a> jarAvailable = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L137" href="#L137">137</a> }
<a class="jxr_linenumber" name="L138" href="#L138">138</a> }
<a class="jxr_linenumber" name="L139" href="#L139">139</a>
<a class="jxr_linenumber" name="L140" href="#L140">140</a> atts = (NodeList) xpath.evaluate(<span class="jxr_string">"./arr[@name='tags']/str"</span>, docs.item(i), XPathConstants.NODESET);
<a class="jxr_linenumber" name="L141" href="#L141">141</a> <strong class="jxr_keyword">boolean</strong> useHTTPS = false;
<a class="jxr_linenumber" name="L142" href="#L142">142</a> <strong class="jxr_keyword">for</strong> (<strong class="jxr_keyword">int</strong> x = 0; x &lt; atts.getLength(); x++) {
<a class="jxr_linenumber" name="L143" href="#L143">143</a> <strong class="jxr_keyword">final</strong> String tmp = xpath.evaluate(<span class="jxr_string">"."</span>, atts.item(x));
<a class="jxr_linenumber" name="L144" href="#L144">144</a> <strong class="jxr_keyword">if</strong> (<span class="jxr_string">"https"</span>.equals(tmp)) {
<a class="jxr_linenumber" name="L145" href="#L145">145</a> useHTTPS = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="L146" href="#L146">146</a> }
<a class="jxr_linenumber" name="L147" href="#L147">147</a> }
<a class="jxr_linenumber" name="L148" href="#L148">148</a> LOGGER.trace(<span class="jxr_string">"Version: {}"</span>, v);
<a class="jxr_linenumber" name="L149" href="#L149">149</a> result.add(<strong class="jxr_keyword">new</strong> <a href="../../../../../org/owasp/dependencycheck/data/nexus/MavenArtifact.html">MavenArtifact</a>(g, a, v, jarAvailable, pomAvailable, useHTTPS));
<a class="jxr_linenumber" name="L150" href="#L150">150</a> }
<a class="jxr_linenumber" name="L151" href="#L151">151</a> }
<a class="jxr_linenumber" name="L152" href="#L152">152</a> } <strong class="jxr_keyword">catch</strong> (Throwable e) {
<a class="jxr_linenumber" name="L153" href="#L153">153</a> <em class="jxr_comment">// Anything else is jacked up XML stuff that we really can't recover from well</em>
<a class="jxr_linenumber" name="L154" href="#L154">154</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> IOException(e.getMessage(), e);
<a class="jxr_linenumber" name="L155" href="#L155">155</a> }
<a class="jxr_linenumber" name="L156" href="#L156">156</a>
<a class="jxr_linenumber" name="L157" href="#L157">157</a> <strong class="jxr_keyword">if</strong> (missing) {
<a class="jxr_linenumber" name="L158" href="#L158">158</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> FileNotFoundException(<span class="jxr_string">"Artifact not found in Central"</span>);
<a class="jxr_linenumber" name="L159" href="#L159">159</a> }
<a class="jxr_linenumber" name="L160" href="#L160">160</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="L161" href="#L161">161</a> LOGGER.debug(<span class="jxr_string">"Could not connect to Central received response code: {} {}"</span>,
<a class="jxr_linenumber" name="L162" href="#L162">162</a> conn.getResponseCode(), conn.getResponseMessage());
<a class="jxr_linenumber" name="L163" href="#L163">163</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> IOException(<span class="jxr_string">"Could not connect to Central"</span>);
<a class="jxr_linenumber" name="L164" href="#L164">164</a> }
<a class="jxr_linenumber" name="L165" href="#L165">165</a> <strong class="jxr_keyword">return</strong> result;
<a class="jxr_linenumber" name="L166" href="#L166">166</a> }
<a class="jxr_linenumber" name="L167" href="#L167">167</a> }
</pre>
<hr/>
<div id="footer">Copyright &#169; 2012&#x2013;2016 <a href="http://www.owasp.org">OWASP</a>. All rights reserved.</div>
<div id="footer">Copyright &#169; 2012&#x2013;2017 <a href="http://www.owasp.org">OWASP</a>. All rights reserved.</div>
</body>
</html>

2
xref/org/owasp/dependencycheck/data/central/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check 1.4.4 Reference Package org.owasp.dependencycheck.data.central</title>
<title>Dependency-Check 1.4.5 Reference Package org.owasp.dependencycheck.data.central</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

4
xref/org/owasp/dependencycheck/data/central/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check 1.4.4 Reference Package org.owasp.dependencycheck.data.central</title>
<title>Dependency-Check 1.4.5 Reference Package org.owasp.dependencycheck.data.central</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>
@@ -63,7 +63,7 @@
</div>
<hr />
<div id="footer">
Copyright &#169; 2012&#x2013;2016 <a href="http://www.owasp.org">OWASP</a>. All rights reserved.
Copyright &#169; 2012&#x2013;2017 <a href="http://www.owasp.org">OWASP</a>. All rights reserved.
</div>
</body>
</html>