github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-14 06:06:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,999 Commits 7 Branches 56 Tags
e4b7f7aa8fea6dbc5fa53484b5b8f3121aeecce2
Commit Graph

672 Commits

Author SHA1 Message Date
Jeremy Long
e4b7f7aa8f update to ensure NodePackageAnalyzer will not run without a backing vulnerability analyzer 2017-11-20 06:46:25 -05:00
Jeremy Long
7e1b6d0cc7 fixed test cases 2017-11-18 15:02:59 -05:00
Jeremy Long
dea9fa1145 externalized central search query so future changes can be handled via a properties change - issue #978 2017-11-14 06:37:41 -05:00
Jeremy Long
0536fa6c2a codacy suggested change 2017-11-13 06:42:18 -05:00
Jeremy Long
02785f2a4a fixed test case 2017-11-12 07:14:05 -05:00
Jeremy Long
8428e96702 removed TreeSet to improve performance 2017-11-12 07:03:35 -05:00
Steve Springett
088566a2cf Adding enhancement (and test) that compensates for an invalid package.json (one without a name field) and automatically adds the name field with a value of "1" so that the analysis continues rather than fails. #975 2017-11-09 16:14:24 -06:00
klemens
4776a542a7 spelling fixes 2017-11-07 21:45:36 +01:00
Jeremy Long
765bfa0e1d update per issue #933 2017-10-22 15:34:16 -04:00
Jeremy Long
e2a97738e1 checkstyle suggested changes 2017-10-13 07:07:52 -04:00
fabio.boldrini
2332c0fa5e On VulnerableSoftware changed implementation of compare to support 
version in the format of 3b that is now splitted in 3 and b. Before the
versions "5.0.3a", "5.0.9" and "5.0.30" were not correctly comparable.
See VulnerableSoftwareTest.testVersionsWithLettersComparison.
This issue can cause a runtime exception during sort
 2017-10-12 09:25:50 +02:00
Jeremy Long
8a7066cda7 resolved merge conflicts 2017-10-06 06:33:43 -04:00
Stefan Neuhaus
c8dd241567 Merge remote-tracking branch 'upstream/master' into improve-centralanalyzer-stability 2017-10-04 20:56:05 +02:00
Stefan Neuhaus
ed49251310 Cleanup test 2017-10-04 20:54:02 +02:00
Stefan Neuhaus
98f9628e27 Fail analysis/build in case of recurring IOExceptions when connecting to MavenCentral 2017-10-04 20:48:16 +02:00
Stefan Neuhaus
6ddc0bfa27 Add license information 2017-10-04 20:11:38 +02:00
Stefan Neuhaus
eacf3ac906 Please PMD 2017-10-04 15:04:53 +02:00
Stefan Neuhaus
6fc15984b8 Please PMD 2017-10-04 14:43:12 +02:00
Stefan Neuhaus
3c3534e7da CentralAnalyzer: Implement retry for fetching MavenArtifacts due to sporadic issues 2017-10-02 17:01:16 +02:00
Jeremy Long
159b9006cc resolved merge conflicts 2017-10-02 06:59:12 -04:00
Jeremy Long
cf2f2dc62d resolved merge conflicts 2017-10-02 06:47:41 -04:00
brianf
16892d022f Nuspec tests and name normalization 
added tests for the existing analyzer and normalized the name and set
the ecosystem.
 2017-10-01 11:41:45 -04:00
Jeremy Long
b6936bf805 Merge pull request #880 from elenoir/enhance_csv_report 
Enhance csv report
 2017-09-30 07:29:03 -04:00
Jeremy Long
3b019d173c resolve merge conflict and update test cases 2017-09-30 07:27:44 -04:00
Jeremy Long
bb5b6b75b8 ensure CPE analyzer is closed so that the data can be refreshed in the lucene index 2017-09-27 05:26:26 -04:00
brianf
4fc8dd59d2 cleanup from reviews. Mostly formatting 2017-09-25 10:18:56 -04:00
Jeremy Long
04dc5f8491 changes to resolve issues with multiple connections to the embedded H2 database 2017-09-25 06:55:22 -04:00
brianf
e0af41e439 cleanup 2017-09-22 13:47:08 -04:00
brianf
1564f11b89 Normalize Ruby analyzers 2017-09-21 21:44:49 -04:00
brianf
69323bf0a4 Normalize the Node Analyzers 2017-09-21 21:00:55 -04:00
brianf
6726101e36 Added Ecosystem to Java 2017-09-21 17:37:17 -04:00
brianf
9998cd0ccc Normailze Cmake names 2017-09-21 16:35:14 -04:00
brianf
562269dd2b Normalized Python Package Name 2017-09-21 15:53:13 -04:00
brianf
a8b740a538 Normalized Python Dist names 2017-09-21 15:41:13 -04:00
brianf
7a74917b67 Standardized the Composer / PHP Names 2017-09-21 15:30:47 -04:00
brianf
4a95efefac Merge branch 'phpAddVersion' into dependencyNameImprovements 2017-09-21 15:22:43 -04:00
brianf
9b718490e3 Centralize the collection of name and version to be used for 
synthesizing a displayName.

Fixed the swift/cocoapod analyzers to new model
 2017-09-21 15:00:38 -04:00
brianf
4ac0a0e305 Removing Redundant dependency entry for composer.lock 
Move all the log statements to debug
 2017-09-19 09:52:32 -04:00
Hans Aikema
8595f55eb3 Put Fields first in class as requested by codacy/pr automated review 2017-09-17 15:53:38 +02:00
Hans Aikema
67aa59c4b8 Implement issue #704 and enable multi-schema validation 2017-09-17 15:30:48 +02:00
brianf
a0081318b6 Adding version to the composer.lock displayFileName 
Changed output to debug
Added basic test for composer parsing, including the new version
 2017-09-15 13:27:44 -04:00
brianf
9175b2624d Following the pattern of other analyzers and including the parent name 
so the report doesn't list dozens of "package.swift" entries
 2017-09-14 12:29:28 -04:00
Erik Lenoir
9a9cf826ab Add TU 2017-09-14 14:01:41 +02:00
Jeremy Long
e45a5a99c3 updated method names to better state what is happening 2017-09-11 12:55:08 -04:00
stevespringett
1bfd2d7ac1 Added support for retiring analyzers (disabled by default) and retired the NodePackageAnalyzer. 2017-09-09 21:50:17 -05:00
Jeremy Long
1548f9a4b2 refactored the dependency object to be threadsafe 2017-09-09 20:42:42 -04:00
Jeremy Long
61390b200d Merge branch 'threadsafe' into dependency-updates 2017-09-09 15:47:06 -04:00
Jeremy Long
df737539a5 Merge branch 'master' into threadsafe 2017-09-09 15:46:46 -04:00
Jeremy Long
5bbb386f8c evidence thread-safety updates 2017-09-09 15:42:12 -04:00
stevespringett
bbd59be1d6 Minor modification to XML schema and unit test. 2017-09-08 10:06:32 -05:00