diff --git a/dependency-check-core/pom.xml b/dependency-check-core/pom.xml
index e56a04adb..aa15c6621 100644
--- a/dependency-check-core/pom.xml
+++ b/dependency-check-core/pom.xml
@@ -252,7 +252,8 @@ Copyright (c) 2012 Jeremy Long. All Rights Reserved.
com.google.code.gson
gson
-
+
org.apache.maven.scm
maven-scm-provider-cvsexe
diff --git a/dependency-check-core/src/test/java/org/owasp/dependencycheck/analyzer/CentralAnalyzerTest.java b/dependency-check-core/src/test/java/org/owasp/dependencycheck/analyzer/CentralAnalyzerTest.java
index f6a2f4fb9..2146d5cc8 100644
--- a/dependency-check-core/src/test/java/org/owasp/dependencycheck/analyzer/CentralAnalyzerTest.java
+++ b/dependency-check-core/src/test/java/org/owasp/dependencycheck/analyzer/CentralAnalyzerTest.java
@@ -61,7 +61,7 @@ public class CentralAnalyzerTest {
new Expectations() {
{
centralSearch.searchSha1(SHA1_SUM);
- returns(expectedMavenArtifacts);
+ returns(expectedMavenArtifacts, expectedMavenArtifacts);
}
};
@@ -176,7 +176,7 @@ public class CentralAnalyzerTest {
new Expectations() {
{
dependency.getSha1sum();
- returns(SHA1_SUM);
+ returns(SHA1_SUM, SHA1_SUM);
}
};
}
diff --git a/dependency-check-maven/pom.xml b/dependency-check-maven/pom.xml
index 6b8a3024c..1844b75f7 100644
--- a/dependency-check-maven/pom.xml
+++ b/dependency-check-maven/pom.xml
@@ -184,7 +184,6 @@ Copyright (c) 2013 Jeremy Long. All Rights Reserved.
org.apache.maven.shared
maven-artifact-transfer
- 0.9.0
@@ -200,14 +199,14 @@ Copyright (c) 2013 Jeremy Long. All Rights Reserved.
org.apache.maven.plugins
maven-invoker-plugin
- 3.0.1
-
-
- org.codehaus.groovy
- groovy-all
- 2.4.11
-
-
+
4
diff --git a/pom.xml b/pom.xml
index ee1b189e0..b2939516f 100644
--- a/pom.xml
+++ b/pom.xml
@@ -125,13 +125,58 @@ Copyright (c) 2012 - Jeremy Long
UTF-8
github
4.7.2
- 1.9.8
- 1.7.24
- 1.2.0
+ 1.9.9
+
+ 1.7.25
+ 1.2.3
- 3.0
+ 3.5.2
2.17
3.6
+ 1.7
+ 1.8
+ 3.0.2
+ 3.0.0-M1
+ 2.5
+ 2.9
+ 2.20.1
+ 0.7.9
+ 3.0.5
+ 2.4
+ 2.5
+
+
+ 1.6
+ 3.0.1u2
+ 2.8.2
+ 1.4.196
+ 1.4
+ 2.6
+
+
+ 3.4
+ 1.6.0
+ 4.12
+ 1.3
+ 1.37
+
+ 1.11.2
+ 1.15
+ 3.0.0
+ 3.3.0
+ 3.5
+ 3.0
+ 3.2.2
+ 1.7
+ 1.4
+
+
+ 2.2
+
+ 1.0.4
+ 0.9.1
+
+
@@ -188,12 +233,12 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.plugins
maven-enforcer-plugin
- 1.4.1
+ 3.0.0-M1
org.codehaus.mojo
animal-sniffer-maven-plugin
- 1.15
+ 1.16
org.apache.maven.plugins
@@ -255,9 +300,48 @@ Copyright (c) 2012 - Jeremy Long
maven-javadoc-plugin
2.10.4
+
+ org.apache.maven.plugins
+ maven-invoker-plugin
+ 3.0.1
+
+
+ org.codehaus.groovy
+ groovy-all
+ 2.4.11
+
+
+
+
+ org.codehaus.mojo
+ versions-maven-plugin
+ 2.5
+
+
+ pre-clean
+
+ update-properties
+
+
+ false
+
+ org.apache.maven.shared:maven-dependency-tree:*Ï
+ org.apache.commons:commons-lang3:*
+ org.apache.lucene:*:*
+ commons-collections:commons-collections:*
+ joda-time:joda-time:*
+ org.slf4j:*:*
+ org.apache.ant:*:*
+
+ org.glassfish:javax.json:*
+
+
+
+
+
org.apache.maven.plugins
maven-compiler-plugin
@@ -285,6 +369,14 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.plugins
maven-enforcer-plugin
+
+
+ org.owasp.maven.enforcer
+ class-file-format-rule
+ 1.0.0
+
+
+ true
enforce-java
@@ -299,13 +391,19 @@ Copyright (c) 2012 - Jeremy Long
-
-
-
- true
- org.apache.maven.plugins
- maven-enforcer-plugin
-
+
+ enforce-classfileformat
+
+
+
+ 51
+
+
+
+
+ enforce
+
+
enforce-maven-3
@@ -460,7 +558,7 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.doxia
doxia-module-markdown
- 1.7
+ ${doxia-module-markdown.version}
@@ -471,7 +569,7 @@ Copyright (c) 2012 - Jeremy Long
false
org.apache.maven.plugins
maven-antrun-plugin
- 1.8
+ ${maven-antrun-plugin.version}
copy-xsd
@@ -498,12 +596,12 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.plugins
maven-dependency-plugin
- 2.10
+ ${maven-dependency-plugin.version}
org.apache.maven.plugins
maven-javadoc-plugin
- 2.10.4
+ ${maven-javadoc-plugin.version}
false
Copyright© 2012-17 Jeremy Long. All Rights Reserved.
@@ -520,12 +618,12 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.plugins
maven-jxr-plugin
- 2.5
+ ${maven-jxr-plugin.version}
org.apache.maven.plugins
maven-project-info-reports-plugin
- 2.9
+ ${maven-project-info-reports-plugin.version}
@@ -552,7 +650,7 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.plugins
maven-surefire-report-plugin
- 2.19.1
+ ${maven-surefire-report-plugin.version}
@@ -564,7 +662,7 @@ Copyright (c) 2012 - Jeremy Long
org.jacoco
jacoco-maven-plugin
- 0.7.9
+ ${jacoco-maven-plugin.version}
target/coverage-reports/jacoco-ut.exec
@@ -582,12 +680,12 @@ Copyright (c) 2012 - Jeremy Long
org.codehaus.mojo
findbugs-maven-plugin
- 3.0.4
+ ${findbugs-maven-plugin.version}
org.codehaus.mojo
taglist-maven-plugin
- 2.4
+ ${taglist-maven-plugin.version}
@@ -611,7 +709,7 @@ Copyright (c) 2012 - Jeremy Long
org.codehaus.mojo
versions-maven-plugin
- 2.3
+ ${versions-maven-plugin.version}
@@ -634,43 +732,43 @@ Copyright (c) 2012 - Jeremy Long
joda-time
joda-time
- 1.6
+ ${joda-time.version}
com.google.code.findbugs
annotations
- 3.0.1u2
+ ${com.google.code.findbugs.annotations.version}
com.google.code.gson
gson
- 2.4
+ ${com.google.code.gson.version}
com.h2database
h2
- 1.4.196
+ ${com.h2database.version}
commons-cli
commons-cli
- 1.4
+ ${commons-cli.version}
commons-io
commons-io
- 2.5
+ ${commons-io.version}
org.apache.commons
commons-lang3
- 3.4
+ ${commons-lang3.version}
com.sun.mail
mailapi
- 1.5.6
+ ${com.sun.mail.mailapi.version}
ch.qos.logback
@@ -685,13 +783,13 @@ Copyright (c) 2012 - Jeremy Long
junit
junit
- 4.12
+ ${junit.version}
test
org.apache.commons
commons-compress
- 1.14
+ ${commons-compress.version}
org.apache.ant
@@ -736,7 +834,7 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.shared
file-management
- 3.0.0
+ ${org.apache.maven.shared.file-management.version}
org.apache.maven
@@ -746,61 +844,61 @@ Copyright (c) 2012 - Jeremy Long
org.apache.maven.plugin-testing
maven-plugin-testing-harness
- 3.3.0
+ ${maven-plugin-testing-harness.version}
org.apache.maven.plugin-tools
maven-plugin-annotations
- 3.5
+ ${maven-plugin-annotations.version}
org.apache.maven.reporting
maven-reporting-api
- 3.0
+ ${maven-reporting-api.version}
commons-collections
commons-collections
- 3.2.2
+ ${commons-collections.version}
org.apache.velocity
velocity
- 1.7
+ ${org.apache.velocity.version}
org.sonatype.plexus
plexus-sec-dispatcher
- 1.4
+ ${plexus-sec-dispatcher.version}
org.apache.maven.shared
maven-dependency-tree
- 2.2
+ ${maven-dependency-tree.version}
org.glassfish
javax.json
- 1.0.4
+ ${org.glassfish.javax.json.version}
org.hamcrest
hamcrest-core
- 1.3
+ ${hamcrest-core.version}
test
org.jmockit
jmockit
- 1.27
+ ${org.jmockit.version}
test
org.jsoup
jsoup
- 1.10.2
+ ${jsoup.version}
org.slf4j
@@ -812,6 +910,11 @@ Copyright (c) 2012 - Jeremy Long
slf4j-simple
${slf4j.version}
+
+ org.apache.maven.shared
+ maven-artifact-transfer
+ ${maven-artifact-transfer.version}
+