github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-05-21 14:27:40 +02:00
Code Issues Packages Projects Releases Wiki Activity
4,642 Commits 7 Branches 56 Tags
af2259d69ed8b5eaab97a7340c4b6ca40ba54953
Commit Graph

2069 Commits

Author SHA1 Message Date
Stefan Neuhaus cd4f09dc86 NvdCveUpdater: Refactor thread pool concept 
- Make thread pools members of the class to facilitate reuse
- Increase default max download thread pool size from 3 to 50 (should be fine for mostly blocking tasks like downloading)
 2017-02-16 08:58:14 +01:00
Stefan Neuhaus 0464626e2b Accelerate CVE DB update 
Vulnerability: switch vulnerableSoftware and references from expensive TreeSet to HashSet
 2017-02-11 20:46:28 +01:00
Jeremy Long 0b329bd40e added test case 2017-02-07 19:41:06 -05:00
Jeremy Long 3d33f24f09 Merge pull request #655 from suhand/master 
Minor spelling fixes
 2017-02-07 19:40:39 -05:00
Jeremy Long 886c02fad2 add configuration to remove FP based on parent-group/artifact from spring-boot 2017-02-07 06:24:34 -05:00
Jeremy Long 3a11504153 updated to prevent bundling of dependencies within WAR files 2017-02-07 06:22:55 -05:00
Jeremy Long 3a082ae00a minor update to #617 2017-02-07 06:06:53 -05:00
Suhan Dharmasuriya 780201845b Minor spelling fixes 2017-02-07 12:00:17 +05:30
Jeremy Long 0e0a4bb0b4 expanded hint rules so that they can remove evidence 2017-02-04 09:20:47 -05:00
Jeremy Long 5333083a78 fixed bug that caused ODC to fail if an invalid assembly was scanned 2017-01-28 08:13:27 -05:00
Jeremy Long b8c6c86330 snapshot version 2017-01-28 08:12:51 -05:00
Jeremy Long e246757f47 version 1.4.5 2017-01-22 17:10:42 -05:00
Jeremy Long f39f754b7b reapplied fix for issue #601 2017-01-22 08:10:14 -05:00
Jeremy Long c59615f452 patch for issue #510 and #512 2017-01-22 08:01:40 -05:00
Jeremy Long 847bed2fa0 added manifest implementation-version 2017-01-22 07:42:11 -05:00
Jeremy Long a9af15f6f8 checkstyle/pmd suggested corrections 2017-01-21 08:47:52 -05:00
Rick Oosterholt df8d4fd77c Minor change: When JAR reading errors occur, at least add the file name 
to the exception. Without it, finding the troubling JAR is hard.
 2017-01-18 13:52:17 +01:00
Jeremy Long 9d5769bb69 Merge branch 'issue575' 2017-01-15 11:19:37 -05:00
Jeremy Long 523cd23b6b filter version numbers for issue #575 2017-01-14 09:41:34 -05:00
Jeremy Long 8733a85ebb patch per issue#642 2017-01-13 06:53:26 -05:00
Jeremy Long d9f0ffa742 Merge pull request #634 from hgschmie/enable_disable 
rework the enabled / disabled logic
 2017-01-08 08:18:12 -05:00
Jeremy Long 8d63ee19ed fix for Jenkins integration, updates to commit f47c6b0 2017-01-08 07:55:35 -05:00
Jeremy Long 6af0842838 added logging 2017-01-02 21:45:21 -05:00
Jeremy Long 4c49adf1ba reduced code duplication 2017-01-02 21:44:59 -05:00
Jeremy Long 5f4e4fab56 reduced code duplication 2017-01-02 21:43:51 -05:00
Jeremy Long 146d7e3fbf reduced code duplciation 2017-01-02 21:42:20 -05:00
Henning Schmiedehausen def78a3cfd rework the enabled / disabled logic 
If an analyzer is disabled from the configuration, it should not be
initialized (because some of the may actually fail during that process
nor should the engine log in any way that those exist.

With these changes, it is possible for me to turn off unwanted
analyzers (e.g. Ruby analyzers for a java project) from the maven
plugin and not confuse my users with spurious misleading messages.
 2016-12-28 16:39:25 -08:00
Jeremy Long 63ad13ff7a added enabled properties per issue #612 2016-12-27 08:46:04 -05:00
Jeremy Long dd92ec675f fixed error in tests 2016-12-27 08:45:42 -05:00
Jeremy Long 6e1512f7d9 added enabled setting (#612) and added additional checks to see if the update should occur (#631) 2016-12-27 08:45:01 -05:00
Jeremy Long 287b1df3fd added enabled settings for all analyzers per #612 2016-12-26 09:11:26 -05:00
Jeremy Long 38bf9b4ddb checkstyle recommendations 2016-12-22 07:32:04 -05:00
Jeremy Long f9d3a9d8d8 Merge pull request #614 from stefanneuhaus/issue-613-fix-version-comparison 
Fix handling of numerical versions
 2016-12-22 06:58:26 -05:00
Jeremy Long 60e661d3a4 updated per issue #630 2016-12-22 06:55:26 -05:00
Jeremy Long c33257d266 addded synchronization - as this analyzer should only run synchronized 2016-12-22 06:53:35 -05:00
Jeremy Long 91dbb39f18 updated test for #630 2016-12-18 11:59:59 -05:00
Jeremy Long 35ae8fd660 updated test for #630 2016-12-18 11:59:30 -05:00
Jeremy Long d854917090 changes for issue #630 2016-12-18 11:58:58 -05:00
Jeremy Long 32ebf6c8ed added phase to accomodate the fix for issue #630 2016-12-18 11:58:20 -05:00
Jeremy Long edd4191d47 fix for #517 2016-12-16 06:29:42 -05:00
Jeremy Long 0cce49506a added validation 2016-12-10 19:58:05 -05:00
Jeremy Long 1c053469e9 fixed date format for test case 2016-12-10 19:50:09 -05:00
Jeremy Long 610e97ef7f jacks suggested change 2016-12-10 16:55:58 -05:00
Jeremy Long 5a678d2ccb removed test code 2016-12-10 16:55:38 -05:00
Jeremy Long 8db61a4d1e coverity suggested change 2016-12-10 16:42:32 -05:00
Jeremy Long f47c6b07f4 jacks recommended change for thread safety 2016-12-05 22:41:15 -05:00
Jeremy Long bd3af45db9 fixed code duplication 2016-12-04 16:18:01 -05:00
Jeremy Long a271d422f6 moved similiar code to a utility function to remove code duplication 2016-12-04 11:28:53 -05:00
Jeremy Long 4dd6dedaa4 hardening the XML parser per jacks.codiscope.com 2016-12-03 17:44:49 -05:00
Jeremy Long 10ee569096 fix proposed by Jacks - synchronizing SimpleDateFormat 2016-12-03 17:43:24 -05:00