mirror of
https://github.com/ysoftdevs/DependencyCheck.git
synced 2026-03-29 05:12:14 +02:00
updated author tag
Former-commit-id: c216a3b3cfc12b874ac9c39fcc5613980372bf9e
This commit is contained in:
Jeremy Long
@@ -44,7 +44,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
/**
|
/**
|
||||||
* An Ant task definition to execute dependency-check during an Ant build.
|
* An Ant task definition to execute dependency-check during an Ant build.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DependencyCheckTask extends Task {
|
public class DependencyCheckTask extends Task {
|
||||||
|
|
||||||
|
|||||||
@@ -30,7 +30,7 @@ import org.owasp.dependencycheck.data.nvdcve.BaseDBTestCase;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DependencyCheckTaskTest extends BuildFileTest {
|
public class DependencyCheckTaskTest extends BuildFileTest {
|
||||||
|
|
||||||
|
|||||||
@@ -52,7 +52,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
/**
|
/**
|
||||||
* The command line interface for the DependencyCheck application.
|
* The command line interface for the DependencyCheck application.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class App {
|
public class App {
|
||||||
|
|
||||||
|
|||||||
@@ -35,7 +35,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
/**
|
/**
|
||||||
* A utility to parse command line arguments for the DependencyCheck.
|
* A utility to parse command line arguments for the DependencyCheck.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class CliParser {
|
public final class CliParser {
|
||||||
|
|
||||||
|
|||||||
@@ -34,7 +34,7 @@ import org.junit.Test;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class CliParserTest {
|
public class CliParserTest {
|
||||||
|
|
||||||
|
|||||||
@@ -50,7 +50,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
* Analyzer is associated with the file type then the file is turned into a
|
* Analyzer is associated with the file type then the file is turned into a
|
||||||
* dependency.
|
* dependency.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class Engine {
|
public class Engine {
|
||||||
|
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ import java.util.Set;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public abstract class AbstractAnalyzer implements Analyzer {
|
public abstract class AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -32,7 +32,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
* Abstract base suppression analyzer that contains methods for parsing the
|
* Abstract base suppression analyzer that contains methods for parsing the
|
||||||
* suppression xml file.
|
* suppression xml file.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public abstract class AbstractSuppressionAnalyzer extends AbstractAnalyzer {
|
public abstract class AbstractSuppressionAnalyzer extends AbstractAnalyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.analyzer;
|
|||||||
/**
|
/**
|
||||||
* An exception thrown when the analysis of a dependency fails.
|
* An exception thrown when the analysis of a dependency fails.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class AnalysisException extends Exception {
|
public class AnalysisException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.analyzer;
|
|||||||
/**
|
/**
|
||||||
* An enumeration defining the phases of analysis.
|
* An enumeration defining the phases of analysis.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public enum AnalysisPhase {
|
public enum AnalysisPhase {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.owasp.dependencycheck.dependency.Dependency;
|
|||||||
* An analyzer will collect information about the dependency in the form of
|
* An analyzer will collect information about the dependency in the form of
|
||||||
* Evidence.
|
* Evidence.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public interface Analyzer {
|
public interface Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.util.ServiceLoader;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class AnalyzerService {
|
public final class AnalyzerService {
|
||||||
|
|
||||||
|
|||||||
@@ -48,7 +48,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
* <p>An analyzer that extracts files from archives and ensures any supported
|
* <p>An analyzer that extracts files from archives and ensures any supported
|
||||||
* files contained within the archive are added to the dependency list.</p>
|
* files contained within the archive are added to the dependency list.</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class ArchiveAnalyzer extends AbstractAnalyzer implements Analyzer {
|
public class ArchiveAnalyzer extends AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.analyzer;
|
|||||||
/**
|
/**
|
||||||
* An exception thrown when files in an archive cannot be extracted.
|
* An exception thrown when files in an archive cannot be extracted.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class ArchiveExtractionException extends Exception {
|
public class ArchiveExtractionException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -55,7 +55,7 @@ import org.owasp.dependencycheck.utils.DependencyVersionUtil;
|
|||||||
* to discern if there is an associated CPE. It uses the evidence contained
|
* to discern if there is an associated CPE. It uses the evidence contained
|
||||||
* within the dependency to search the Lucene index.
|
* within the dependency to search the Lucene index.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class CPEAnalyzer implements Analyzer {
|
public class CPEAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.owasp.dependencycheck.suppression.SuppressionRule;
|
|||||||
* complies with the suppressions.xsd schema. Any identified CPE entries within
|
* complies with the suppressions.xsd schema. Any identified CPE entries within
|
||||||
* the dependencies that match will be removed.
|
* the dependencies that match will be removed.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class CpeSuppressionAnalyzer extends AbstractSuppressionAnalyzer {
|
public class CpeSuppressionAnalyzer extends AbstractSuppressionAnalyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -42,7 +42,7 @@ import org.owasp.dependencycheck.utils.LogUtils;
|
|||||||
* <p>Note, this grouping only works on dependencies with identified CVE
|
* <p>Note, this grouping only works on dependencies with identified CVE
|
||||||
* entries</p>
|
* entries</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DependencyBundlingAnalyzer extends AbstractAnalyzer implements Analyzer {
|
public class DependencyBundlingAnalyzer extends AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -39,7 +39,7 @@ import org.owasp.dependencycheck.dependency.VulnerableSoftware;
|
|||||||
* This analyzer attempts to remove some well known false positives -
|
* This analyzer attempts to remove some well known false positives -
|
||||||
* specifically regarding the java runtime.
|
* specifically regarding the java runtime.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class FalsePositiveAnalyzer extends AbstractAnalyzer {
|
public class FalsePositiveAnalyzer extends AbstractAnalyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -30,7 +30,7 @@ import org.owasp.dependencycheck.utils.DependencyVersionUtil;
|
|||||||
*
|
*
|
||||||
* Takes a dependency and analyzes the filename and determines the hashes.
|
* Takes a dependency and analyzes the filename and determines the hashes.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class FileNameAnalyzer extends AbstractAnalyzer implements Analyzer {
|
public class FileNameAnalyzer extends AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.owasp.dependencycheck.dependency.Evidence;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class HintAnalyzer extends AbstractAnalyzer implements Analyzer {
|
public class HintAnalyzer extends AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -67,7 +67,7 @@ import org.xml.sax.XMLReader;
|
|||||||
* Used to load a JAR file and collect information that can be used to determine
|
* Used to load a JAR file and collect information that can be used to determine
|
||||||
* the associated CPE.
|
* the associated CPE.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class JarAnalyzer extends AbstractAnalyzer implements Analyzer {
|
public class JarAnalyzer extends AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -28,7 +28,7 @@ import java.util.regex.Pattern;
|
|||||||
* Used to load a JAR file and collect information that can be used to determine
|
* Used to load a JAR file and collect information that can be used to determine
|
||||||
* the associated CPE.
|
* the associated CPE.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class JavaScriptAnalyzer extends AbstractAnalyzer implements Analyzer {
|
public class JavaScriptAnalyzer extends AbstractAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -34,7 +34,7 @@ import org.owasp.dependencycheck.data.nvdcve.DatabaseException;
|
|||||||
* attempts to discern if there is an associated CVEs. It uses the the
|
* attempts to discern if there is an associated CVEs. It uses the the
|
||||||
* identifiers found by other analyzers to lookup the CVE data.
|
* identifiers found by other analyzers to lookup the CVE data.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NvdCveAnalyzer implements Analyzer {
|
public class NvdCveAnalyzer implements Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.owasp.dependencycheck.suppression.SuppressionRule;
|
|||||||
* complies with the suppressions.xsd schema. Any identified Vulnerability
|
* complies with the suppressions.xsd schema. Any identified Vulnerability
|
||||||
* entries within the dependencies that match will be removed.
|
* entries within the dependencies that match will be removed.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class VulnerabilitySuppressionAnalyzer extends AbstractSuppressionAnalyzer {
|
public class VulnerabilitySuppressionAnalyzer extends AbstractSuppressionAnalyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.concurrency;
|
|||||||
/**
|
/**
|
||||||
* If thrown, indicates that a problem occurred when locking a directory.
|
* If thrown, indicates that a problem occurred when locking a directory.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DirectoryLockException extends Exception {
|
public class DirectoryLockException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -38,7 +38,7 @@ import java.util.logging.Logger;
|
|||||||
* the process will "spin" waiting for an opportunity to obtain the lock
|
* the process will "spin" waiting for an opportunity to obtain the lock
|
||||||
* requested.
|
* requested.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DirectorySpinLock implements Closeable /*, AutoCloseable*/ {
|
public class DirectorySpinLock implements Closeable /*, AutoCloseable*/ {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.concurrency;
|
|||||||
/**
|
/**
|
||||||
* If thrown, indicates that there is a problem with a directory.
|
* If thrown, indicates that there is a problem with a directory.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class InvalidDirectoryException extends Exception {
|
public class InvalidDirectoryException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -51,7 +51,7 @@ import org.owasp.dependencycheck.data.lucene.SearchFieldAnalyzer;
|
|||||||
* An in memory lucene index that contains the vendor/product combinations from
|
* An in memory lucene index that contains the vendor/product combinations from
|
||||||
* the CPE (application) identifiers within the NVD CVE data.
|
* the CPE (application) identifiers within the NVD CVE data.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class CpeMemoryIndex {
|
public final class CpeMemoryIndex {
|
||||||
|
|
||||||
|
|||||||
@@ -22,7 +22,7 @@ package org.owasp.dependencycheck.data.cpe;
|
|||||||
* Fields is a collection of field names used within the Lucene index for CPE
|
* Fields is a collection of field names used within the Lucene index for CPE
|
||||||
* entries.
|
* entries.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public abstract class Fields {
|
public abstract class Fields {
|
||||||
|
|
||||||
|
|||||||
@@ -25,7 +25,7 @@ import java.net.URLDecoder;
|
|||||||
/**
|
/**
|
||||||
* A CPE entry containing the name, vendor, product, and version.
|
* A CPE entry containing the name, vendor, product, and version.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class IndexEntry implements Serializable {
|
public class IndexEntry implements Serializable {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.data.cpe;
|
|||||||
/**
|
/**
|
||||||
* An exception thrown when the there is an issue using the in-memory CPE Index.
|
* An exception thrown when the there is an issue using the in-memory CPE Index.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class IndexException extends Exception {
|
public class IndexException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import java.util.logging.Logger;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class CweDB {
|
public final class CweDB {
|
||||||
|
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ import org.xml.sax.helpers.DefaultHandler;
|
|||||||
/**
|
/**
|
||||||
* A SAX Handler that will parse the CWE XML.
|
* A SAX Handler that will parse the CWE XML.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class CweHandler extends DefaultHandler {
|
public class CweHandler extends DefaultHandler {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.apache.lucene.analysis.tokenattributes.CharTermAttribute;
|
|||||||
* An abstract tokenizing filter that can be used as the base for a tokenizing
|
* An abstract tokenizing filter that can be used as the base for a tokenizing
|
||||||
* filter.
|
* filter.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public abstract class AbstractTokenizingFilter extends TokenFilter {
|
public abstract class AbstractTokenizingFilter extends TokenFilter {
|
||||||
|
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ import org.apache.lucene.util.Version;
|
|||||||
* Tokenizes the input breaking it into tokens when non-alpha/numeric characters
|
* Tokenizes the input breaking it into tokens when non-alpha/numeric characters
|
||||||
* are found.
|
* are found.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class AlphaNumericTokenizer extends CharTokenizer {
|
public class AlphaNumericTokenizer extends CharTokenizer {
|
||||||
|
|
||||||
|
|||||||
@@ -22,7 +22,7 @@ import org.apache.lucene.search.similarities.DefaultSimilarity;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DependencySimilarity extends DefaultSimilarity {
|
public class DependencySimilarity extends DefaultSimilarity {
|
||||||
|
|
||||||
|
|||||||
@@ -33,7 +33,7 @@ import org.apache.lucene.util.Version;
|
|||||||
* WordDelimiterFilter, LowerCaseFilter, and StopFilter. The intended purpose of
|
* WordDelimiterFilter, LowerCaseFilter, and StopFilter. The intended purpose of
|
||||||
* this Analyzer is to index the CPE fields vendor and product.</p>
|
* this Analyzer is to index the CPE fields vendor and product.</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class FieldAnalyzer extends Analyzer {
|
public class FieldAnalyzer extends Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ import org.apache.lucene.util.Version;
|
|||||||
* <p>Lucene utils is a set of utilize written to make constructing Lucene
|
* <p>Lucene utils is a set of utilize written to make constructing Lucene
|
||||||
* queries simpler.</p>
|
* queries simpler.</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class LuceneUtils {
|
public final class LuceneUtils {
|
||||||
|
|
||||||
|
|||||||
@@ -31,7 +31,7 @@ import org.apache.lucene.util.Version;
|
|||||||
/**
|
/**
|
||||||
* A Lucene field analyzer used to analyzer queries against the CPE data.
|
* A Lucene field analyzer used to analyzer queries against the CPE data.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class SearchFieldAnalyzer extends Analyzer {
|
public class SearchFieldAnalyzer extends Analyzer {
|
||||||
|
|
||||||
|
|||||||
@@ -30,7 +30,7 @@ import org.apache.lucene.util.Version;
|
|||||||
* SearchVersionAnalyzer is a Lucene Analyzer used to analyze version
|
* SearchVersionAnalyzer is a Lucene Analyzer used to analyze version
|
||||||
* information.
|
* information.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
* @deprecated version information is no longer stored in lucene
|
* @deprecated version information is no longer stored in lucene
|
||||||
*/
|
*/
|
||||||
@Deprecated
|
@Deprecated
|
||||||
|
|||||||
@@ -30,7 +30,7 @@ import org.apache.lucene.analysis.tokenattributes.CharTermAttribute;
|
|||||||
* <p><b>Example:</b> "Spring Framework Core" -> "Spring SpringFramework
|
* <p><b>Example:</b> "Spring Framework Core" -> "Spring SpringFramework
|
||||||
* Framework FrameworkCore Core".</p>
|
* Framework FrameworkCore Core".</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class TokenPairConcatenatingFilter extends TokenFilter {
|
public final class TokenPairConcatenatingFilter extends TokenFilter {
|
||||||
|
|
||||||
|
|||||||
@@ -34,7 +34,7 @@ import org.owasp.dependencycheck.utils.UrlStringUtils;
|
|||||||
* <p><b>Example:</b> "3.0.0.RELEASE" -> "3 3.0 3.0.0 RELEASE
|
* <p><b>Example:</b> "3.0.0.RELEASE" -> "3 3.0 3.0.0 RELEASE
|
||||||
* 3.0.0.RELEASE".</p>
|
* 3.0.0.RELEASE".</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class UrlTokenizingFilter extends AbstractTokenizingFilter {
|
public final class UrlTokenizingFilter extends AbstractTokenizingFilter {
|
||||||
|
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import org.apache.lucene.util.Version;
|
|||||||
/**
|
/**
|
||||||
* VersionAnalyzer is a Lucene Analyzer used to analyze version information.
|
* VersionAnalyzer is a Lucene Analyzer used to analyze version information.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
* @deprecated version information is no longer stored in lucene
|
* @deprecated version information is no longer stored in lucene
|
||||||
*/
|
*/
|
||||||
@Deprecated
|
@Deprecated
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import org.apache.lucene.analysis.tokenattributes.CharTermAttribute;
|
|||||||
* <p><b>Example:</b> "3.0.0.RELEASE" -> "3 3.0 3.0.0 RELEASE
|
* <p><b>Example:</b> "3.0.0.RELEASE" -> "3 3.0 3.0.0 RELEASE
|
||||||
* 3.0.0.RELEASE".</p>
|
* 3.0.0.RELEASE".</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
* @deprecated version information is no longer stored in lucene
|
* @deprecated version information is no longer stored in lucene
|
||||||
*/
|
*/
|
||||||
@Deprecated
|
@Deprecated
|
||||||
|
|||||||
@@ -40,7 +40,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
* database file exists and that the appropriate table structure has been
|
* database file exists and that the appropriate table structure has been
|
||||||
* created.
|
* created.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class ConnectionFactory {
|
public final class ConnectionFactory {
|
||||||
|
|
||||||
|
|||||||
@@ -22,7 +22,7 @@ package org.owasp.dependencycheck.data.nvdcve;
|
|||||||
* An exception used to indicate the db4o database is corrupt. This could be due
|
* An exception used to indicate the db4o database is corrupt. This could be due
|
||||||
* to invalid data or a complete failure of the db.
|
* to invalid data or a complete failure of the db.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
class CorruptDatabaseException extends DatabaseException {
|
class CorruptDatabaseException extends DatabaseException {
|
||||||
|
|
||||||
|
|||||||
@@ -43,7 +43,7 @@ import org.owasp.dependencycheck.utils.DependencyVersionUtil;
|
|||||||
/**
|
/**
|
||||||
* The database holding information about the NVD CVE data.
|
* The database holding information about the NVD CVE data.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class CveDB {
|
public class CveDB {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.data.nvdcve;
|
|||||||
/**
|
/**
|
||||||
* An exception thrown if an operation against the database fails.
|
* An exception thrown if an operation against the database fails.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DatabaseException extends Exception {
|
public class DatabaseException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -25,7 +25,7 @@ import org.owasp.dependencycheck.data.update.NvdCveInfo;
|
|||||||
/**
|
/**
|
||||||
* This is a wrapper around a set of properties that are stored in the database.
|
* This is a wrapper around a set of properties that are stored in the database.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DatabaseProperties {
|
public class DatabaseProperties {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.data.nvdcve;
|
|||||||
/**
|
/**
|
||||||
* An exception thrown the database driver is unable to be loaded.
|
* An exception thrown the database driver is unable to be loaded.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DriverLoadException extends Exception {
|
public class DriverLoadException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -34,7 +34,7 @@ import java.util.logging.Logger;
|
|||||||
/**
|
/**
|
||||||
* DriverLoader is a utility class that is used to load database drivers.
|
* DriverLoader is a utility class that is used to load database drivers.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class DriverLoader {
|
public final class DriverLoader {
|
||||||
|
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ import org.owasp.dependencycheck.data.update.exception.UpdateException;
|
|||||||
* Defines a data source who's data is retrieved from the Internet. This data
|
* Defines a data source who's data is retrieved from the Internet. This data
|
||||||
* can be downloaded and the local cache updated.
|
* can be downloaded and the local cache updated.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public interface CachedWebDataSource {
|
public interface CachedWebDataSource {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.data.update;
|
|||||||
/**
|
/**
|
||||||
* A pojo that contains the Url and timestamp of the current NvdCve XML files.
|
* A pojo that contains the Url and timestamp of the current NvdCve XML files.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NvdCveInfo {
|
public class NvdCveInfo {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.owasp.dependencycheck.utils.DownloadFailedException;
|
|||||||
/**
|
/**
|
||||||
* Class responsible for updating the NVD CVE and CPE data stores.
|
* Class responsible for updating the NVD CVE and CPE data stores.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NvdCveUpdater implements CachedWebDataSource {
|
public class NvdCveUpdater implements CachedWebDataSource {
|
||||||
|
|
||||||
|
|||||||
@@ -44,7 +44,7 @@ import static org.owasp.dependencycheck.data.nvdcve.DatabaseProperties.MODIFIED;
|
|||||||
/**
|
/**
|
||||||
* Class responsible for updating the NVDCVE data store.
|
* Class responsible for updating the NVDCVE data store.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class StandardUpdate {
|
public class StandardUpdate {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.util.ServiceLoader;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class UpdateService {
|
public final class UpdateService {
|
||||||
|
|
||||||
|
|||||||
@@ -31,7 +31,7 @@ import org.owasp.dependencycheck.utils.Downloader;
|
|||||||
* Contains a collection of updateable NvdCveInfo objects. This is used to
|
* Contains a collection of updateable NvdCveInfo objects. This is used to
|
||||||
* determine which files need to be downloaded and processed.
|
* determine which files need to be downloaded and processed.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class UpdateableNvdCve implements java.lang.Iterable<NvdCveInfo>, Iterator<NvdCveInfo> {
|
public class UpdateableNvdCve implements java.lang.Iterable<NvdCveInfo>, Iterator<NvdCveInfo> {
|
||||||
|
|
||||||
|
|||||||
@@ -22,7 +22,7 @@ package org.owasp.dependencycheck.data.update.exception;
|
|||||||
* An InvalidDataDataException is a generic exception used when trying to load
|
* An InvalidDataDataException is a generic exception used when trying to load
|
||||||
* the NVD CVE meta data.
|
* the NVD CVE meta data.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class InvalidDataException extends Exception {
|
public class InvalidDataException extends Exception {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.io.IOException;
|
|||||||
/**
|
/**
|
||||||
* An exception used when an error occurs reading a setting.
|
* An exception used when an error occurs reading a setting.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class UpdateException extends IOException {
|
public class UpdateException extends IOException {
|
||||||
|
|
||||||
|
|||||||
@@ -34,7 +34,7 @@ import org.owasp.dependencycheck.utils.Downloader;
|
|||||||
/**
|
/**
|
||||||
* A callable object to download two files.
|
* A callable object to download two files.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class CallableDownloadTask implements Callable<Future<ProcessTask>> {
|
public class CallableDownloadTask implements Callable<Future<ProcessTask>> {
|
||||||
|
|
||||||
|
|||||||
@@ -44,7 +44,7 @@ import org.xml.sax.SAXException;
|
|||||||
* A callable task that will process a given set of NVD CVE xml files and update
|
* A callable task that will process a given set of NVD CVE xml files and update
|
||||||
* the Cve Database accordingly.
|
* the Cve Database accordingly.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class ProcessTask implements Callable<ProcessTask> {
|
public class ProcessTask implements Callable<ProcessTask> {
|
||||||
|
|
||||||
|
|||||||
@@ -35,7 +35,7 @@ import org.xml.sax.helpers.DefaultHandler;
|
|||||||
* schema and is useful to ensure accurate identification (or at least
|
* schema and is useful to ensure accurate identification (or at least
|
||||||
* complete).
|
* complete).
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NvdCve12Handler extends DefaultHandler {
|
public class NvdCve12Handler extends DefaultHandler {
|
||||||
|
|
||||||
|
|||||||
@@ -37,7 +37,7 @@ import org.xml.sax.helpers.DefaultHandler;
|
|||||||
/**
|
/**
|
||||||
* A SAX Handler that will parse the NVD CVE XML (schema version 2.0).
|
* A SAX Handler that will parse the NVD CVE XML (schema version 2.0).
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NvdCve20Handler extends DefaultHandler {
|
public class NvdCve20Handler extends DefaultHandler {
|
||||||
|
|
||||||
|
|||||||
@@ -37,7 +37,7 @@ import org.owasp.dependencycheck.utils.FileUtils;
|
|||||||
* the form of evidence. The Evidence is then used to determine if there are any
|
* the form of evidence. The Evidence is then used to determine if there are any
|
||||||
* known, published, vulnerabilities associated with the program dependency.
|
* known, published, vulnerabilities associated with the program dependency.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class Dependency implements Comparable<Dependency> {
|
public class Dependency implements Comparable<Dependency> {
|
||||||
|
|
||||||
|
|||||||
@@ -21,7 +21,7 @@ package org.owasp.dependencycheck.dependency;
|
|||||||
/**
|
/**
|
||||||
* Evidence is a piece of information about a Dependency.
|
* Evidence is a piece of information about a Dependency.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class Evidence implements Comparable<Evidence> {
|
public class Evidence implements Comparable<Evidence> {
|
||||||
|
|
||||||
|
|||||||
@@ -35,7 +35,7 @@ import org.owasp.dependencycheck.utils.UrlStringUtils;
|
|||||||
/**
|
/**
|
||||||
* Used to maintain a collection of Evidence.
|
* Used to maintain a collection of Evidence.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class EvidenceCollection implements Iterable<Evidence> {
|
public class EvidenceCollection implements Iterable<Evidence> {
|
||||||
|
|
||||||
|
|||||||
@@ -20,7 +20,7 @@ package org.owasp.dependencycheck.dependency;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class Identifier implements Comparable<Identifier> {
|
public class Identifier implements Comparable<Identifier> {
|
||||||
|
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ import java.io.Serializable;
|
|||||||
* An external reference for a vulnerability. This contains a name, URL, and a
|
* An external reference for a vulnerability. This contains a name, URL, and a
|
||||||
* source.
|
* source.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class Reference implements Serializable, Comparable<Reference> {
|
public class Reference implements Serializable, Comparable<Reference> {
|
||||||
|
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ import java.util.TreeSet;
|
|||||||
/**
|
/**
|
||||||
* Contains the information about a vulnerability.
|
* Contains the information about a vulnerability.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class Vulnerability implements Serializable, Comparable<Vulnerability> {
|
public class Vulnerability implements Serializable, Comparable<Vulnerability> {
|
||||||
|
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ import java.util.Comparator;
|
|||||||
/**
|
/**
|
||||||
* Comparator for Vulnerability objects.
|
* Comparator for Vulnerability objects.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class VulnerabilityComparator implements Comparator<Vulnerability>, Serializable {
|
public class VulnerabilityComparator implements Comparator<Vulnerability>, Serializable {
|
||||||
|
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import org.owasp.dependencycheck.data.cpe.IndexEntry;
|
|||||||
* A record containing information about vulnerable software. This is referenced
|
* A record containing information about vulnerable software. This is referenced
|
||||||
* from a vulnerability.
|
* from a vulnerability.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class VulnerableSoftware extends IndexEntry implements Serializable, Comparable<VulnerableSoftware> {
|
public class VulnerableSoftware extends IndexEntry implements Serializable, Comparable<VulnerableSoftware> {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.io.IOException;
|
|||||||
/**
|
/**
|
||||||
* An exception used when the data needed does not exist to perform analysis.
|
* An exception used when the data needed does not exist to perform analysis.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NoDataException extends IOException {
|
public class NoDataException extends IOException {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.xml.sax.helpers.XMLFilterImpl;
|
|||||||
* specify the xmlns="http://maven.apache.org/POM/4.0.0". This filter ensures
|
* specify the xmlns="http://maven.apache.org/POM/4.0.0". This filter ensures
|
||||||
* that the correct namespace is added so that both types of POMs can be read.
|
* that the correct namespace is added so that both types of POMs can be read.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class MavenNamespaceFilter extends XMLFilterImpl {
|
public class MavenNamespaceFilter extends XMLFilterImpl {
|
||||||
|
|
||||||
|
|||||||
@@ -45,7 +45,7 @@ import org.owasp.dependencycheck.dependency.Dependency;
|
|||||||
* ReportGenerator exposes a list of Dependencies to the template when
|
* ReportGenerator exposes a list of Dependencies to the template when
|
||||||
* generating the report.
|
* generating the report.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class ReportGenerator {
|
public class ReportGenerator {
|
||||||
|
|
||||||
|
|||||||
@@ -25,7 +25,7 @@ import java.util.regex.Pattern;
|
|||||||
* a regular expression or could be case insensitive. The equals method has been
|
* a regular expression or could be case insensitive. The equals method has been
|
||||||
* over-ridden so that the object will correctly compare to strings.
|
* over-ridden so that the object will correctly compare to strings.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class PropertyType {
|
public class PropertyType {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.xml.sax.SAXParseException;
|
|||||||
/**
|
/**
|
||||||
* An XML parsing error handler.
|
* An XML parsing error handler.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class SuppressionErrorHandler implements ErrorHandler {
|
public class SuppressionErrorHandler implements ErrorHandler {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.xml.sax.helpers.DefaultHandler;
|
|||||||
/**
|
/**
|
||||||
* A handler to load suppression rules.
|
* A handler to load suppression rules.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class SuppressionHandler extends DefaultHandler {
|
public class SuppressionHandler extends DefaultHandler {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.io.IOException;
|
|||||||
/**
|
/**
|
||||||
* An exception used when parsing a suppression rule file fails.
|
* An exception used when parsing a suppression rule file fails.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class SuppressionParseException extends IOException {
|
public class SuppressionParseException extends IOException {
|
||||||
|
|
||||||
|
|||||||
@@ -38,7 +38,7 @@ import org.xml.sax.XMLReader;
|
|||||||
/**
|
/**
|
||||||
* A simple validating parser for XML Suppression Rules.
|
* A simple validating parser for XML Suppression Rules.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class SuppressionParser {
|
public class SuppressionParser {
|
||||||
|
|
||||||
|
|||||||
@@ -27,7 +27,7 @@ import org.owasp.dependencycheck.dependency.Vulnerability;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class SuppressionRule {
|
public class SuppressionRule {
|
||||||
|
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import org.owasp.dependencycheck.data.nvdcve.DatabaseException;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class DBUtils {
|
public final class DBUtils {
|
||||||
|
|
||||||
|
|||||||
@@ -36,7 +36,7 @@ import org.apache.commons.lang.StringUtils;
|
|||||||
* separated by periods. If a different separator is used the parser will likely
|
* separated by periods. If a different separator is used the parser will likely
|
||||||
* fail.</p>
|
* fail.</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DependencyVersion implements Iterable, Comparable<DependencyVersion> {
|
public class DependencyVersion implements Iterable, Comparable<DependencyVersion> {
|
||||||
|
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ import java.util.regex.Pattern;
|
|||||||
* <p>A utility class to extract version numbers from file names (or other
|
* <p>A utility class to extract version numbers from file names (or other
|
||||||
* strings containing version numbers.</p>
|
* strings containing version numbers.</p>
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class DependencyVersionUtil {
|
public final class DependencyVersionUtil {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.io.IOException;
|
|||||||
/**
|
/**
|
||||||
* An exception used when a download fails.
|
* An exception used when a download fails.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class DownloadFailedException extends IOException {
|
public class DownloadFailedException extends IOException {
|
||||||
|
|
||||||
|
|||||||
@@ -39,7 +39,7 @@ import java.util.zip.InflaterInputStream;
|
|||||||
/**
|
/**
|
||||||
* A utility to download files from the Internet.
|
* A utility to download files from the Internet.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class Downloader {
|
public final class Downloader {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.io.IOException;
|
|||||||
/**
|
/**
|
||||||
* An exception used when a file is unable to be un-zipped.
|
* An exception used when a file is unable to be un-zipped.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class ExtractionException extends IOException {
|
public class ExtractionException extends IOException {
|
||||||
|
|
||||||
|
|||||||
@@ -36,7 +36,7 @@ import org.owasp.dependencycheck.Engine;
|
|||||||
/**
|
/**
|
||||||
* A collection of utilities for processing information about files.
|
* A collection of utilities for processing information about files.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class FileUtils {
|
public final class FileUtils {
|
||||||
|
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ import java.io.IOException;
|
|||||||
/**
|
/**
|
||||||
* An exception used when an error occurs reading a setting.
|
* An exception used when an error occurs reading a setting.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class InvalidSettingException extends IOException {
|
public class InvalidSettingException extends IOException {
|
||||||
|
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ import java.util.logging.LogRecord;
|
|||||||
* verbose log file uses the root logger as I couldn't get anything else to
|
* verbose log file uses the root logger as I couldn't get anything else to
|
||||||
* work; as such, this filter limits the log entries to specific classes.
|
* work; as such, this filter limits the log entries to specific classes.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class LogFilter implements Filter {
|
public class LogFilter implements Filter {
|
||||||
|
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import java.util.logging.SimpleFormatter;
|
|||||||
/**
|
/**
|
||||||
* A utility class to aide in the setup of the logging mechanism.
|
* A utility class to aide in the setup of the logging mechanism.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class LogUtils {
|
public final class LogUtils {
|
||||||
|
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ import java.io.InputStream;
|
|||||||
* processes the stream from closing it. This is necessary when dealing with
|
* processes the stream from closing it. This is necessary when dealing with
|
||||||
* things like JAXB and zipInputStreams.
|
* things like JAXB and zipInputStreams.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class NonClosingStream extends FilterInputStream {
|
public class NonClosingStream extends FilterInputStream {
|
||||||
|
|
||||||
|
|||||||
@@ -32,7 +32,7 @@ import java.util.logging.Logger;
|
|||||||
/**
|
/**
|
||||||
* A simple settings container that wraps the dependencycheck.properties file.
|
* A simple settings container that wraps the dependencycheck.properties file.
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class Settings {
|
public final class Settings {
|
||||||
|
|
||||||
|
|||||||
@@ -28,7 +28,7 @@ import java.util.regex.Pattern;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public final class UrlStringUtils {
|
public final class UrlStringUtils {
|
||||||
|
|
||||||
|
|||||||
@@ -16,7 +16,7 @@ along with Dependency-Check. If not, see http://www.gnu.org/licenses/.
|
|||||||
|
|
||||||
Copyright (c) 2012 Jeremy Long. All Rights Reserved.
|
Copyright (c) 2012 Jeremy Long. All Rights Reserved.
|
||||||
|
|
||||||
@author Jeremy Long (jeremy.long@owasp.org)
|
@author Jeremy Long <jeremy.long@owasp.org>
|
||||||
@version 1
|
@version 1
|
||||||
*#
|
*#
|
||||||
|
|
||||||
|
|||||||
@@ -16,7 +16,7 @@ along with Dependency-Check. If not, see http://www.gnu.org/licenses/.
|
|||||||
|
|
||||||
Copyright (c) 2013 Jeremy Long. All Rights Reserved.
|
Copyright (c) 2013 Jeremy Long. All Rights Reserved.
|
||||||
|
|
||||||
@author Jeremy Long (jeremy.long@owasp.org)
|
@author Jeremy Long <jeremy.long@owasp.org>
|
||||||
@version 1
|
@version 1
|
||||||
*#
|
*#
|
||||||
|
|
||||||
|
|||||||
@@ -16,7 +16,7 @@ along with Dependency-Check. If not, see http://www.gnu.org/licenses/.
|
|||||||
|
|
||||||
Copyright (c) 2012 Jeremy Long. All Rights Reserved.
|
Copyright (c) 2012 Jeremy Long. All Rights Reserved.
|
||||||
|
|
||||||
@author Jeremy Long (jeremy.long@owasp.org)
|
@author Jeremy Long <jeremy.long@owasp.org>
|
||||||
@version 1
|
@version 1
|
||||||
*#<?xml version="1.0"?>
|
*#<?xml version="1.0"?>
|
||||||
<analysis xmlns="https://www.owasp.org/index.php/OWASP_Dependency_Check">
|
<analysis xmlns="https://www.owasp.org/index.php/OWASP_Dependency_Check">
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import static org.junit.Assert.*;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class EngineIntegrationTest {
|
public class EngineIntegrationTest {
|
||||||
|
|
||||||
|
|||||||
@@ -29,7 +29,7 @@ import static org.junit.Assert.*;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class AbstractAnalyzerTest {
|
public class AbstractAnalyzerTest {
|
||||||
|
|
||||||
|
|||||||
@@ -31,7 +31,7 @@ import static org.junit.Assert.*;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class AnalyzerServiceTest {
|
public class AnalyzerServiceTest {
|
||||||
|
|
||||||
|
|||||||
@@ -33,7 +33,7 @@ import org.owasp.dependencycheck.utils.Settings;
|
|||||||
|
|
||||||
/**
|
/**
|
||||||
*
|
*
|
||||||
* @author Jeremy Long (jeremy.long@owasp.org)
|
* @author Jeremy Long <jeremy.long@owasp.org>
|
||||||
*/
|
*/
|
||||||
public class ArchiveAnalyzerTest extends BaseIndexTestCase {
|
public class ArchiveAnalyzerTest extends BaseIndexTestCase {
|
||||||
|
|
||||||
|
|||||||
Some files were not shown because too many files have changed in this diff Show More
Reference in New Issue
Block a user