github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-16 08:36:55 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,999 Commits 7 Branches 56 Tags
e4b7f7aa8fea6dbc5fa53484b5b8f3121aeecce2
Commit Graph

127 Commits

Author SHA1 Message Date
Jeremy Long
e4b7f7aa8f update to ensure NodePackageAnalyzer will not run without a backing vulnerability analyzer 2017-11-20 06:46:25 -05:00
Jeremy Long
dea9fa1145 externalized central search query so future changes can be handled via a properties change - issue #978 2017-11-14 06:37:41 -05:00
Steve Springett
088566a2cf Adding enhancement (and test) that compensates for an invalid package.json (one without a name field) and automatically adds the name field with a value of "1" so that the analysis continues rather than fails. #975 2017-11-09 16:14:24 -06:00
Jeremy Long
8a7066cda7 resolved merge conflicts 2017-10-06 06:33:43 -04:00
Jeremy Long
159b9006cc resolved merge conflicts 2017-10-02 06:59:12 -04:00
brianf
16892d022f Nuspec tests and name normalization 
added tests for the existing analyzer and normalized the name and set
the ecosystem.
 2017-10-01 11:41:45 -04:00
Jeremy Long
3b019d173c resolve merge conflict and update test cases 2017-09-30 07:27:44 -04:00
Jeremy Long
04dc5f8491 changes to resolve issues with multiple connections to the embedded H2 database 2017-09-25 06:55:22 -04:00
Hans Aikema
67aa59c4b8 Implement issue #704 and enable multi-schema validation 2017-09-17 15:30:48 +02:00
stevespringett
1bfd2d7ac1 Added support for retiring analyzers (disabled by default) and retired the NodePackageAnalyzer. 2017-09-09 21:50:17 -05:00
Jeremy Long
0f87dee1a0 Merge branch 'catch_ioexception_parsing_manifest' of https://github.com/mealingr/DependencyCheck into mealingr-catch_ioexception_parsing_manifest 2017-08-23 05:51:15 -04:00
Richard Mealing
5d87dc2942 change to skip and remove macOS metadata and non-zip files 2017-08-21 13:51:45 +01:00
Jeremy Long
bcae8d2015 Merge pull request #839 from jeremylong/h2upgrade 
H2 Upgrade
 2017-08-20 11:02:17 -04:00
Jeremy Long
a015cf4210 patch to fix issue #844 2017-08-19 17:20:36 -04:00
Jeremy Long
c0aca39d31 revert database name to dc.h2.db 2017-08-13 16:05:26 -04:00
Jeremy Long
3ef80644f8 updated connection string for concurrency 2017-08-13 08:28:32 -04:00
Kevin Tham
89c63ac5c9 Add NspAnalyzerTest.java and package.json files for testing 2017-08-08 11:30:54 -07:00
Jeremy Long
9fd8f1c898 initial upgrade of h2 2017-08-07 18:37:03 -04:00
Jeremy Long
2ab92a940b updates to resolve issue #801 2017-07-16 13:15:23 -04:00
Phillip Whittlesea
9a30c3d0cb Merge branch 'master' into issue-730 2017-06-19 21:44:25 +01:00
Phillip Whittlesea
8021aaed4b Issue #730: Core tests for multiple suppression files 
Added updates to Maven plugin documentation
Added upgrade notes to the README
 2017-06-12 01:18:10 +01:00
Jeremy Long
4293cce282 Merge branch 'master' of github.com:jeremylong/DependencyCheck into stevespringett-master 2017-06-02 06:44:13 -04:00
Jeremy Long
ec448438e5 fix for issue #710 2017-05-29 08:19:22 -04:00
Jeremy Long
454a875593 Merge branch 'master' of https://github.com/stevespringett/DependencyCheck into stevespringett-master 2017-05-21 07:29:05 -04:00
Jeremy Long
898412eaea default to remove auth schemas for proxy connections - added a property to disable this functionality. Fix for issue #718 2017-05-14 17:19:26 -04:00
stevespringett
9da95e592c Added NSP Analyzer Support 2017-04-26 00:40:15 -05:00
Jeremy Long
03ec3142c3 updated threadpool size 2017-03-07 06:37:21 -05:00
Jeremy Long
e363e8109b added suppression notes 2017-02-26 09:16:53 -05:00
Jeremy Long
1367be510c correct fix for issue #660; correctly handle organization from the pom 2017-02-21 07:02:05 -05:00
Jeremy Long
d9dcc8cc2d fixed UTF-8 BOM bug 2017-02-17 17:18:10 -05:00
Stefan Neuhaus
cd4f09dc86 NvdCveUpdater: Refactor thread pool concept 
- Make thread pools members of the class to facilitate reuse
- Increase default max download thread pool size from 3 to 50 (should be fine for mostly blocking tasks like downloading)
 2017-02-16 08:58:14 +01:00
Jeremy Long
0e0a4bb0b4 expanded hint rules so that they can remove evidence 2017-02-04 09:20:47 -05:00
Jeremy Long
63ad13ff7a added enabled properties per issue #612 2016-12-27 08:46:04 -05:00
Jeremy Long
287b1df3fd added enabled settings for all analyzers per #612 2016-12-26 09:11:26 -05:00
Jeremy Long
a12bc44ecd moved hard-coded configuration to properties file and added some additional debugging 2016-10-28 08:44:43 -04:00
Jeremy Long
176d3ddefa temporary fix for issue #534 2016-09-04 19:09:08 -04:00
bjiang
2fa8507d69 merge owasp 1.4.1 2016-07-12 16:22:05 -04:00
Jeremy Long
ebb52995a5 converted hint analyzer to use an externalized configuration file to simplify the resolution of issue #522 2016-07-04 07:10:07 -04:00
Jeremy Long
cf97c89fe0 fully exectuable jar for testing resolution for issue #454 2016-06-26 07:30:39 -04:00
bjiang
00d4ee47de merge upstream 2016-06-15 13:54:49 -04:00
Jeremy Long
c4b423cb0f additional tests resources to fix issue #503 2016-06-05 06:32:11 -04:00
Jeremy Long
71ef8061f9 merge conflict resolved 2016-05-15 07:29:17 -04:00
Jeremy Long
6f451736ba Add ability to flag analyzers as experimental so that they are not always enabled 2016-05-14 07:20:53 -04:00
bjiang
2b761279e4 Merge branch 'ruby_dependency' into swift_support 2016-05-06 17:59:28 -04:00
bjiang
83f83d4eee add RubyBundlerAnalyzerTest 2016-05-06 17:45:40 -04:00
bjiang
d25f6e813c new analyzer for Package.swift 2016-05-05 19:21:21 -04:00
bjiang
f1422adf75 merge upstream 2016-05-03 13:12:05 -04:00
bjiang
189da08885 merge upstream 2016-05-03 13:05:56 -04:00
bjiang
c2b1742582 support cocoapods for swift 2016-05-03 12:41:39 -04:00
Jeremy Long
84b992d3a1 Merge branch 'fix-cvss-for-bundle-audit' of git://github.com/geramirez/DependencyCheck into geramirez-fix-cvss-for-bundle-audit 2016-04-30 11:02:16 -04:00