From bbf0b295ce4190bb7c4a15bc51a500fd4e5b6869 Mon Sep 17 00:00:00 2001
From: Jeremy Long <jeremy.long@gmail.com>
Date: Sat, 3 Jun 2017 06:57:59 -0400
Subject: [PATCH] attempting to get travis to run a coverity scan

---
 .travis.yml      | 21 ++++++---------------
 coverity_scan.sh | 13 +++++++++++++
 2 files changed, 19 insertions(+), 15 deletions(-)
 create mode 100644 coverity_scan.sh

diff --git a/.travis.yml b/.travis.yml
index ed2f38e1a..ea4ed6220 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -1,24 +1,15 @@
 language: java
 jdk: oraclejdk7
 script: mvn install -DreleaseTesting
+
 env:
   global:
   - secure: ZUzhWfpXJw/oAeDlUkDFkEJMT0T7kCN3d7ah8urkL2B0KFfKOqQagkbXkgvDa1SYud8VdcnoGa69LfkEr5IrdqW7R4bEYZAiN5swm4Z0iO8t53szVspm2f+O9jQ44O/sfOfpfLxWUUuhdc7Vbrszp+tSszxdPmssWL+f5a/mfWs=
   - secure: pmFymoI7qH0Kna3NkcHrqLiTVWKmrhwqA4Z9U6XLhWDQxcs5g94wCCKpGB6Lkz9mkvRxBRFpZZelnXJa9W9mnuVOMIa5tQfS5gBuaNXOe7AXXdc+Y2975OR9sSfvf16FxLFvNJILmZq+bpMLs+EXaQvjYQHW2O6OWZdLhAPVG6A=
+
 before_install:
-- wget -O ~/codacy-coverage-reporter-assembly.jar https://oss.sonatype.org/service/local/repositories/releases/content/com/codacy/codacy-coverage-reporter/1.0.13/codacy-coverage-reporter-1.0.13-assembly.jar
+  - wget -O ~/codacy-coverage-reporter-assembly.jar https://oss.sonatype.org/service/local/repositories/releases/content/com/codacy/codacy-coverage-reporter/1.0.13/codacy-coverage-reporter-1.0.13-assembly.jar
+
 after_success:
-- java -cp ~/codacy-coverage-reporter-assembly.jar com.codacy.CodacyCoverageReporter
-  -l Java -r build-reporting/target/coverage-reports/jacoco.xml
-matrix:
-  include:
-  - env: CRON_ONLY=1
-    addons:
-      coverity_scan:
-        project:
-          name: OWASP dependency-check
-          version: 1.0
-          description: A software composition analsis tools that detects publicly
-            disclosed vulnerabilities in application dependencies.
-        build_command: mvn -DskipTests=true package
-        branch_pattern: master
+  - java -cp ~/codacy-coverage-reporter-assembly.jar com.codacy.CodacyCoverageReporter -l Java -r build-reporting/target/coverage-reports/jacoco.xml
+  - ./coverity_scan.sh
diff --git a/coverity_scan.sh b/coverity_scan.sh
new file mode 100644
index 000000000..a83d6b76d
--- /dev/null
+++ b/coverity_scan.sh
@@ -0,0 +1,13 @@
+
+
+if [ $TRAVIS_BRANCH = "master" ] && [ $TRAVIS_EVENT_TYPE = "cron" ] ; then
+  echo "Executing Coverity Scan"
+fi
+    
+export COVERITY_SCAN_PROJECT_NAME="jeremylong/DependencyCheck"
+export COVERITY_SCAN_NOTIFICATION_EMAIL="jeremy.long@owasp.org"
+export COVERITY_SCAN_BRANCH_PATTERN="master"
+export COVERITY_SCAN_BUILD_COMMAND="mvn package -Dmaven.test.skip=true"
+
+# Run the Coverity scan
+curl -s https://scan.coverity.com/scripts/travisci_build_coverity_scan.sh | bash
\ No newline at end of file