update to ensure NodePackageAnalyzer will not run without a backing vulnerability analyzer

2026-01-16 16:46:55 +01:00 · 2017-11-20 06:46:25 -05:00
parent a754a8e6b4
commit e4b7f7aa8f
8 changed files with 86 additions and 6 deletions
--- a/dependency-check-utils/src/main/java/org/owasp/dependencycheck/utils/Settings.java
+++ b/dependency-check-utils/src/main/java/org/owasp/dependencycheck/utils/Settings.java
@@ -442,6 +442,10 @@ public final class Settings {
         * new version available.
         */
        public static final String UPDATE_VERSION_CHECK_ENABLED = "updater.versioncheck.enabled";
+        /**
+         * The key to determine which ecosystems should skip the NVD CVE analysis.
+         */
+        public static final String ECOSYSTEM_SKIP_NVDCVE = "ecosystem.skip.nvdcve";

        /**
         * private constructor because this is a "utility" class containing