Issue #730: Core tests for multiple suppression files

Added updates to Maven plugin documentation
Added upgrade notes to the README

dependency-check-maven/src/it/730-multiple-suppression-files/pom.xml

@@ -44,8 +44,8 @@ Copyright (c) 2017 The OWASP Foundation. All Rights Reserved.
                 <artifactId>dependency-check-maven</artifactId>
                 <configuration>
                     <suppressionFiles>
-                        <param>${project.basedir}/test-suppression1.xml</param>
-                        <param>${project.basedir}/test-suppression2.xml</param>
+                        <suppressionFile>${project.basedir}/test-suppression1.xml</suppressionFile>
+                        <suppressionFile>${project.basedir}/test-suppression2.xml</suppressionFile>
                     </suppressionFiles>
                 </configuration>
             </plugin>

dependency-check-maven/src/site/markdown/configuration.md

@@ -28,7 +28,7 @@ skipRuntimeScope            | Skip analysis for artifacts with Runtime Scope.
 skipSystemScope             | Skip analysis for artifacts with System Scope.             | false
 skipTestScope               | Skip analysis for artifacts with Test Scope.               | true
 skipArtifactType            | A regular expression used to filter/skip artifact types.   |  
-suppressionFile             | The file path to the XML suppression file \- used to suppress [false positives](../general/suppression.html). |  
+suppressionFiles            | The file paths to the XML suppression files \- used to suppress [false positives](../general/suppression.html). |  
 hintsFile                   | The file path to the XML hints file \- used to resolve [false negatives](../general/hints.html).       |  
 enableExperimental          | Enable the [experimental analyzers](../analyzers/index.html). If not enabled the experimental analyzers (see below) will not be loaded or used. | false
 

dependency-check-maven/src/site/markdown/index.md.vm

@@ -204,3 +204,39 @@ Update the local cache of the NVD data from NIST without analyzing the dependenc
     ...
 </project>
 ```
+
+$H$H$H Example 7:
+Suppress false positives using multiple suppression files (E.g. a company-wide suppression file and a local project file).
+
+```xml
+<project>
+    ...
+    <build>
+        ...
+        <plugins>
+            ...
+            <plugin>
+                <groupId>org.owasp</groupId>
+                <artifactId>dependency-check-maven</artifactId>
+                <version>${project.version}</version>
+                <configuration>
+                    <suppressionFiles>
+                        <suppressionFile>http://example.org/suppression.xml</suppressionFile>
+                        <suppressionFile>project-suppression.xml</suppressionFile>
+                    </suppressionFiles>
+                </configuration>
+                <executions>
+                    <execution>
+                        <goals>
+                            <goal>check</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+            ...
+        </plugins>
+        ...
+    </build>
+    ...
+</project>
+```