github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-19 10:07:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,291 Commits 7 Branches 56 Tags
63ad13ff7a89e7071ef687cbd0b88d22fd51f338
Commit Graph

95 Commits

Author SHA1 Message Date
Jeremy Long
63ad13ff7a added enabled properties per issue #612 2016-12-27 08:46:04 -05:00
Jeremy Long
287b1df3fd added enabled settings for all analyzers per #612 2016-12-26 09:11:26 -05:00
Jeremy Long
a12bc44ecd moved hard-coded configuration to properties file and added some additional debugging 2016-10-28 08:44:43 -04:00
Jeremy Long
176d3ddefa temporary fix for issue #534 2016-09-04 19:09:08 -04:00
bjiang
2fa8507d69 merge owasp 1.4.1 2016-07-12 16:22:05 -04:00
Jeremy Long
ebb52995a5 converted hint analyzer to use an externalized configuration file to simplify the resolution of issue #522 2016-07-04 07:10:07 -04:00
Jeremy Long
cf97c89fe0 fully exectuable jar for testing resolution for issue #454 2016-06-26 07:30:39 -04:00
bjiang
00d4ee47de merge upstream 2016-06-15 13:54:49 -04:00
Jeremy Long
c4b423cb0f additional tests resources to fix issue #503 2016-06-05 06:32:11 -04:00
Jeremy Long
71ef8061f9 merge conflict resolved 2016-05-15 07:29:17 -04:00
Jeremy Long
6f451736ba Add ability to flag analyzers as experimental so that they are not always enabled 2016-05-14 07:20:53 -04:00
bjiang
2b761279e4 Merge branch 'ruby_dependency' into swift_support 2016-05-06 17:59:28 -04:00
bjiang
83f83d4eee add RubyBundlerAnalyzerTest 2016-05-06 17:45:40 -04:00
bjiang
d25f6e813c new analyzer for Package.swift 2016-05-05 19:21:21 -04:00
bjiang
f1422adf75 merge upstream 2016-05-03 13:12:05 -04:00
bjiang
189da08885 merge upstream 2016-05-03 13:05:56 -04:00
bjiang
c2b1742582 support cocoapods for swift 2016-05-03 12:41:39 -04:00
Jeremy Long
84b992d3a1 Merge branch 'fix-cvss-for-bundle-audit' of git://github.com/geramirez/DependencyCheck into geramirez-fix-cvss-for-bundle-audit 2016-04-30 11:02:16 -04:00
Dave Goddard
0f37c2b59c Adding sinatra fixture 
Signed-off-by: Gabriel Ramirez <gabriel.e.ramirez@gmail.com>
 2016-04-29 16:17:51 -04:00
Jeremy Long
abebecac4a updated parser and tests to revert to old suppression schema if new schema fails 2016-04-24 09:06:00 -04:00
Jeremy Long
deda02f879 updated suppression schema to require a CPE, CVE, or CVSS Below per issue #488 2016-04-24 07:20:11 -04:00
bjiang
da82f975e4 Add test for project url from pom.xml 2016-04-15 12:30:14 -04:00
bjiang
ab48d2c2ff multiple improvements 2016-03-28 14:06:30 -04:00
bjiang
ff7d0fdb9d #472 first fix and improve RubyBundleAuditAnalyzerTest.java 
Test were failing b/c Gemfile.lock and Gemfile were missing.
The files were missing b/c parent .gitignore them.
Changes:
1. Force added new test files, and updated test with more result
validation.
2. Added error logging from bundle-audit.
3. place holder for bundle-audit install directory in test
dependencycheck.properties.
 2016-03-20 15:54:24 -04:00
Dale Visser
2ed5dc153a Fixed merge conflict in App.java 2015-11-23 13:27:22 -05:00
Jeremy Long
aa9908b34a updated test properties w/ changes that had been made in the main properties 2015-10-25 06:22:30 -04:00
Jeremy Long
3b6c64dc9d move test resource to correct directory 2015-10-13 19:03:33 -04:00
Jeremy Long
3b976d211f upgrdae db schema version 2015-10-12 06:15:24 -04:00
Dale Visser
a0492fe944 Merge branch 'upmaster' into ruby-bundler 
Conflicts:
	dependency-check-core/src/main/resources/META-INF/services/org.owasp.dependencycheck.analyzer.Analyzer
 2015-08-27 14:05:36 -04:00
Dale Visser
9e25480baa Merge branch 'upmaster' into node-js-analyzer 
Conflicts:
	dependency-check-cli/src/main/java/org/owasp/dependencycheck/App.java
	dependency-check-cli/src/site/markdown/arguments.md
	dependency-check-core/src/main/resources/META-INF/services/org.owasp.dependencycheck.analyzer.Analyzer
 2015-08-25 13:03:12 -04:00
Dale Visser
4493f895c6 Added test resources to cover interesting bundle-audit cases. 2015-08-19 15:26:17 -04:00
Dale Visser
7eb2c89f39 rugygems: Added gemspec test resources, test cases, and minimal code to run tests and have evidence gathering test fail. 2015-08-12 11:58:46 -04:00
Dale Visser
2441b92bc6 node.js: Initial commit, with analysis test failing. 2015-08-07 14:43:08 -04:00
Dale Visser
4764f61b48 290: Added unit tests and implementation to support bzip2. 2015-08-05 17:42:10 -04:00
Jeremy Long
dd3758af43 manually merged PR #270 
Former-commit-id: 9d4504942f229a7462d59b292e478ea2289ecfed
 2015-07-24 06:44:54 -04:00
Jeremy Long
ee969a5ed9 manually merged PR #278 
Former-commit-id: 7811e5832e680589e5b1734e775ee8cab92dd30f
 2015-07-24 05:36:32 -04:00
Jeremy Long
a547a219a4 grammar police caught me (#285) 
Former-commit-id: 83a94b573aea686ba8cc8c6620e1495c46cd425b
 2015-07-23 05:16:39 -04:00
Jeremy Long
d4eba634ea reduced logging levels in test as build issue was resolved 
Former-commit-id: e1c8cd3ef9f19d5c0d17dc59d6feed6474118602
 2015-07-22 06:45:17 -04:00
Jeremy Long
8cd68c7c16 improved logging 
Former-commit-id: 5b6741a1d561cbf4c20ef98907ce99a2b245b42e
 2015-07-17 08:45:43 -04:00
Jeremy Long
6a2ed23822 switched to debug logging in test 
Former-commit-id: 4d42f08ac2fdc58ce1eeb4ab3f27d1efa72a6a46
 2015-07-17 08:24:33 -04:00
Dale Visser
2d92c9d240 Commented out first instance of cpe.url, and moved 2nd instance up. Assumption: the 2nd value was being used. 
Former-commit-id: 2cae0ca086b2fb666d883dc1a3fbcb174465aa2b
 2015-07-14 18:00:45 -04:00
Dale Visser
e5fdda60fc Merge branch 'upmaster' into openssl-source-analyzer 
Conflicts:
	dependency-check-core/src/test/java/org/owasp/dependencycheck/analyzer/PythonPackageAnalyzerTest.java

Former-commit-id: 6d92982227ad0ff7c4381d03eb1bf542dfe7697f
 2015-07-09 16:14:54 -04:00
Jeremy Long
0a4c3102dd reverted changes as a schema upgrade is not needed at this time 
Former-commit-id: 6f97fef5748a3d630a73f790cca8baa4753e1d7a
 2015-07-09 07:07:10 -04:00
Jeremy Long
54094ebc21 removed unfinished JavaScriptAnalyzer 
Former-commit-id: 9d7d7e82da91cea21ea87b8d933093e738571ba2
 2015-07-09 06:37:29 -04:00
Jeremy Long
9daa9b6cca reorganized code, made the database file name version independent so that upgrades can be made, and implemented a CPE updates per issue #149 
Former-commit-id: fdb57afa28ecffdb7ca90971851844718ecb8bb9
 2015-07-08 06:20:19 -04:00
Dale Visser
c214b70459 OpenSSL: Analyzer unit test passes. 
Former-commit-id: 06d36762375a5fc55bc7f30a7857713ce332fceb
 2015-07-07 17:37:31 -04:00
Jeremy Long
44893a2a2c added CPE entries to patch issue #149 
Former-commit-id: 472d5456e6a8a9d569908ce8da4f64d05afa96c7
 2015-07-04 06:40:39 -04:00
Jeremy Long
aa66e5ab15 removed unused JUL properties file 
Former-commit-id: e02cb926d9c52fbd6f8e99dc612dea6707fac51a
 2015-06-22 05:54:18 -04:00
Jeremy Long
802e4fc238 changed default logging for tests to INFO 
Former-commit-id: 45b4dc2707e0a267d2ef41a84627c5fee5ba92f1
 2015-06-22 05:53:51 -04:00
Jeremy Long
13db27854b logback test configuration 
Former-commit-id: f7af8edab353b7900eb20f088707ad9c38d9330e
 2015-06-21 20:12:31 -04:00