From 90457c89ff429a18b8a0ef613642321efcdf9881 Mon Sep 17 00:00:00 2001 From: Jeremy Long Date: Sat, 15 Nov 2014 08:23:13 -0500 Subject: [PATCH] updated NVD CVE URLs to use gzipped files Former-commit-id: ca3c5ec40458f200a19cfcda36d518cf4de5a65a --- .../src/test/resources/dependencycheck.properties | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/dependency-check-utils/src/test/resources/dependencycheck.properties b/dependency-check-utils/src/test/resources/dependencycheck.properties index 8ed80a630..bdcbe1a41 100644 --- a/dependency-check-utils/src/test/resources/dependencycheck.properties +++ b/dependency-check-utils/src/test/resources/dependencycheck.properties @@ -45,11 +45,15 @@ cpe.meta.url=http://static.nvd.nist.gov/feeds/xml/cpe/dictionary/official-cpe-di cve.url.modified.validfordays=7 # the path to the modified nvd cve xml file. -cve.url-1.2.modified=http://nvd.nist.gov/download/nvdcve-modified.xml -cve.url-2.0.modified=http://static.nvd.nist.gov/feeds/xml/cve/nvdcve-2.0-modified.xml cve.startyear=2014 -cve.url-2.0.base=http://static.nvd.nist.gov/feeds/xml/cve/nvdcve-2.0-%d.xml -cve.url-1.2.base=http://nvd.nist.gov/download/nvdcve-%d.xml +cve.url-1.2.modified=https://nvd.nist.gov/download/nvdcve-Modified.xml.gz +#cve.url-1.2.modified=http://nvd.nist.gov/download/nvdcve-modified.xml +cve.url-2.0.modified=https://nvd.nist.gov/feeds/xml/cve/nvdcve-2.0-Modified.xml.gz +#cve.url-2.0.modified=http://static.nvd.nist.gov/feeds/xml/cve/nvdcve-2.0-modified.xml +cve.url-1.2.base=https://nvd.nist.gov/download/nvdcve-%d.xml.gz +#cve.url-1.2.base=http://nvd.nist.gov/download/nvdcve-%d.xml +cve.url-2.0.base=https://nvd.nist.gov/feeds/xml/cve/nvdcve-2.0-%d.xml.gz +#cve.url-2.0.base=http://static.nvd.nist.gov/feeds/xml/cve/nvdcve-2.0-%d.xml # the URL for searching Nexus for SHA-1 hashes and whether it's enabled analyzer.nexus.enabled=true