github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-15 08:13:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,158 Commits 7 Branches 56 Tags
034a274b07dec049366d6beaf2e35bf195603111
Commit Graph

700 Commits

Author SHA1 Message Date
Jeremy Long
034a274b07 fixed copy paste error 
Former-commit-id: 83c51cb5b43c635088025a2076121911af32a7ec
 2014-07-19 13:57:15 -04:00
Jeremy Long
718d7af8bc updated to use the new getConnectionString implementation 
Former-commit-id: c5bd68b3d2fb4c2470d6c50dc5f8f9f6036b9fce
 2014-07-19 07:38:51 -04:00
Jeremy Long
860d3d9c8b made the ensureDBExists method perform a correct check rather then the previous hack 
Former-commit-id: 5fae859fa7531761e78022eb2e8c4c41e6d5d150
 2014-07-19 07:38:08 -04:00
Jeremy Long
f28b566992 added data.file_name and data.version 
Former-commit-id: e692a13a216ec6808e3fd92397fd3c50854cfa56
 2014-07-19 07:37:11 -04:00
Jeremy Long
46702bbb5c moved checkSumTest.file, checksum.java, and checksumTest.java to dependency-check-utils 
Former-commit-id: 0c05e466b5fe071ca55552660d471431572c0558
 2014-07-17 06:03:21 -04:00
Jeremy Long
5600c9bc69 removed commented out property 
Former-commit-id: 2a07ced007c986d3ab127d8ff216f49c332f41c3
 2014-07-17 06:01:59 -04:00
Jeremy Long
d7e46b1693 corrected the connection string in the test properties 
Former-commit-id: 1c37d4bd4de49cddc34b92a27875e0a07eee600f
 2014-07-17 06:00:59 -04:00
Jeremy Long
288892441f corrected javadoc 
Former-commit-id: c0c7d8da486a08dfc3e9232b57166d4c496bb798
 2014-07-17 05:59:10 -04:00
Jeremy Long
e1179a8e22 moved getConnectionString to the Settings class 
Former-commit-id: d35df6d103505888ac4d87f964d8d615996ce614
 2014-07-13 06:56:40 -04:00
Jeremy Long
4b06d0fd87 upgraded version on commons-compress to 1.8.1 
Former-commit-id: 2dc8698035e18764e101b36b11faf9e5c7188c5b
 2014-07-13 06:54:59 -04:00
Jeremy Long
464d91f45a fixed resource leaks found by coverity 
Former-commit-id: 0e2d3b866853e2b906b9683e27602fd244298e55
 2014-07-08 06:17:36 -04:00
Jeremy Long
20ec224070 updated version to 1.2.4-SNAPSHOT 
Former-commit-id: 65d0e1ba5ed781e9f70ec7fd0c115a027e3bbc00
 2014-06-28 08:14:49 -04:00
Jeremy Long
0badbfc4a0 version 1.2.3 
Former-commit-id: c355adf9813220c4b3dac3450e80a83a245209a6
 2014-06-28 06:06:33 -04:00
Jeremy Long
d8ba04ae7f Merge branch 'master' of github.com:colezlaw/DependencyCheck into colezlaw-master 
Former-commit-id: 27bac793e5284df49c0804361c07d4ef559cb251
 2014-06-26 20:33:35 -04:00
Will Stranathan
5c874cafd1 Fixed suppression analyzer to load from input stream fixing failure 
Former-commit-id: 4e6f8d7fddcf7ed26ad60b7aa8bc3a6b22ae19cc
 2014-06-26 15:14:55 -04:00
Will Stranathan
8cafc14d09 Updated to 1.1 of GrokAssembly.exe to deal with exceptions 
Former-commit-id: 8c1d6ad04e378f2a19e2fcdc9ebc1eab12be9aef
 2014-06-24 10:16:53 -04:00
Jeremy Long
25ac5033fc snapshot version 1.2.3 
Former-commit-id: 58f96e7ef71987a53626287f95b332f04b60a6f6
 2014-06-22 21:33:58 -04:00
Jeremy Long
848be0db6c version 1.2.2 
Former-commit-id: 8da06e1a2f4b41bccc22105d7bc758442bb14e57
 2014-06-22 21:31:58 -04:00
Jeremy Long
f38bbf4cc7 minor javadoc correction 
Former-commit-id: 45e621682304820fe17c17e92bd0aa5ac5dfd023
 2014-06-22 19:53:59 -04:00
Jeremy Long
4b4da8d467 checkstyle/pmd/etc. corrections 
Former-commit-id: 59883bd0b03c8690ce9a20120eafefe7c61384cd
 2014-06-22 19:03:33 -04:00
Jeremy Long
13116c5381 added support for suppression by GAV (issue #124), created base suppression.xml (issue #123), and fixed false positives related to spring security (issue #130) 
Former-commit-id: 330134211d022fec336dc1ca39205a94a088ee84
 2014-06-22 16:34:39 -04:00
Jeremy Long
d2cd406a62 added additional test resources 
Former-commit-id: b788c7420b82d8a108cd2335c536be667c2ab293
 2014-06-22 16:32:48 -04:00
Jeremy Long
acbce05fbf updated to support suppression by maven coordinates (GAV) per issue #124 
Former-commit-id: 3cff74ded9b0c352fb1d45e784d89c3c20f55467
 2014-06-20 06:47:46 -04:00
Jeremy Long
bee4d3a338 fixed bug that left false positive, previously fixed, due to the file name modifications that the archive analyzer makes - regex needed updating to not just look for the start of the filename 
Former-commit-id: 922a9edaf9123524585b97e6cb9f8efd4a389031
 2014-06-14 07:04:02 -04:00
Jeremy Long
0ffef12a8b deprecated the proxyUrl field replacing it with proxyServer; getter and setter for proxyUrl now just wrap proxyServer 
Former-commit-id: 5f1fbdf2eda6f05252f81dd8bf7acd44c01b7b6f
 2014-05-31 06:42:27 -04:00
Jeremy Long
d90d07c68b added code to disable the analyzer if initialization fails 
Former-commit-id: 202baa329f07fb24921ce83660d596d46b71b663
 2014-05-30 05:26:03 -04:00
Jeremy Long
ce292b84fa fixed spelling error in property name 
Former-commit-id: 106e8e9128bc371ff78f3a73c3f0da6012761cba
 2014-05-30 05:25:20 -04:00
Jeremy Long
01690860db renamed PROXY_URL to PROXY_SERVER to avoid confusion 
Former-commit-id: 1fbc025fba68aff644a8b8582657e5ef30024a24
 2014-05-24 07:06:59 -04:00
Jeremy Long
ce48823d38 Moved some of the utility classes from core to a new utils module 
Former-commit-id: 2e6ff9631ff4c843f10db1e022e41e728394e420
 2014-05-21 06:29:46 -04:00
Jeremy Long
d43fee5585 renamed CallableDownloadTask to DownloadTask 
Former-commit-id: 4ed8987945722d99e0f23b2f379321a652f76348
 2014-05-20 21:08:15 -04:00
Jeremy Long
5dc9e51dd4 fixed test cases 
Former-commit-id: 081ea17023cef3313ce59dbf8ce7f2a8cff706eb
 2014-05-17 08:04:20 -04:00
Jeremy Long
235fcccbd7 if maven identifier already exists we now update it with a hyperlink instead of adding a new one - the Jar analyzer may add a maven identifier based on the pom.xml 
Former-commit-id: db0ae1145d000089fb10e0357566f03632a559b9
 2014-05-17 08:04:03 -04:00
Jeremy Long
91c971b8fd cleaned up pom evidence collection and added a maven identifier if the GAV is available from the pom.xml 
Former-commit-id: 0400863fea2cfe86a5601b3ae134e7e98a4b29c7
 2014-05-17 08:03:04 -04:00
Jeremy Long
e43003cadc fixed false positives related to Apache POI and MS Office CPE/CVE per issue #126 
Former-commit-id: cfde8d86cb339a9f2cf0b8c1f72f5ca198efab8a
 2014-05-14 19:17:47 -04:00
Jeremy Long
9a96165655 Update JarAnalyze to resolve issue #127 
Updated JarAnalyzer to resolve issue #127 - duplicate package and package name evidence in the report.

Former-commit-id: 067643f7e99a7a4f36438b18c07e92a5e8544089
 2014-05-14 18:01:12 -04:00
Jeremy Long
994aef411c updated version to 1.2.2-SNAPSHOT 
Former-commit-id: e1b07457515dcab0f00c6a0b36fadb58ecc3deeb
 2014-05-10 08:41:37 -04:00
Jeremy Long
094a180935 updated to release version 1.2.1 
Former-commit-id: d908eed4538f0928c8b108348d9d46ce6d2f57e0
 2014-05-10 08:32:34 -04:00
Jeremy Long
c7f31b3d79 fixed typo in log statement 
Former-commit-id: 08192210f3c5bb322160fba678a56acb36af3198
 2014-05-10 07:23:18 -04:00
Jeremy Long
98d0239d03 pmd correction to logger 
Former-commit-id: 3c3b26ec8fbf4d2602c681ff02f460fe7e712914
 2014-05-10 07:16:50 -04:00
Jeremy Long
ffeab147ce checkstyle corrections 
Former-commit-id: f9ae61d41ba01b6931892a339a9b701ae3c91ce2
 2014-05-10 07:13:07 -04:00
Jeremy Long
23b95178ff updated to remove archive files from the list of dependencies - additionally, if a zip file appears to be a jar it will now make a copy of the zip and scan it as a jar 
Former-commit-id: d927daea530abad2d578dbe0ff38b97d044b4775
 2014-05-10 07:00:43 -04:00
Jeremy Long
9bde80357f patch to remove additional false positives due to SCM entries in the pom 
Former-commit-id: 6101fae1b5957254ddbece5afc2db8edeb7bf9b8
 2014-05-10 06:59:34 -04:00
Jeremy Long
1485733715 updated to use displayFileName field instead of FileName when writing information about dependencies 
Former-commit-id: bd3383ac4831bc44db6b63083e47802cce04b520
 2014-05-10 06:58:51 -04:00
Jeremy Long
d125a7f09d added displayFileName field to the dependency class 
Former-commit-id: 248f5397d37ea6e2f333dc0fe357188865bdb446
 2014-05-10 06:57:44 -04:00
Jeremy Long
77486dffd4 removed additional false positives as part of patch for issue #93 and #119 
Former-commit-id: 86f48b30150f2ba4db99dfc2eb15a0ac50a6e383
 2014-05-10 06:56:53 -04:00
Jeremy Long
c84bcb433f fixed spelling error 
Former-commit-id: d3aed24d6691b58ef132e00f9827e27fceb9fc73
 2014-05-07 19:33:59 -04:00
Jeremy Long
f1e5221257 Merge pull request #122 from colezlaw/master 
Fixed logging order of GrokAssembly for bad assemblies. Using resources ...

Former-commit-id: 65a41d23df6ccfa8c4f05235da3d7c613e4290a0
 2014-05-07 19:31:59 -04:00
Jeremy Long
b8bf01acc3 added checks before warning that a file could not be deleted 
Former-commit-id: 098ea1889b49ade0c73385919906398c86627ab2
 2014-05-07 19:31:21 -04:00
Jeremy Long
65aa7bd1de fixed display bug when only one CPE exists for a given CVE 
Former-commit-id: 18535dc408a51e516626ec4c43a3e72b01fd28f0
 2014-05-07 19:30:45 -04:00
Jeremy Long
6f511444a7 fixed display bug when only one CPE exists for a given CVE 
Former-commit-id: 3b791d0a0fbe2587390e048cffc4453567ddf74a
 2014-05-07 19:29:52 -04:00