version 1.2.3

Former-commit-id: c355adf9813220c4b3dac3450e80a83a245209a6
Merge branch 'colezlaw-master'
2026-01-15 16:23:37 +01:00 · 2014-06-28 06:06:33 -04:00 · 2014-06-26 20:33:45 -04:00 · 2014-06-26 20:33:35 -04:00 · 2014-06-26 20:32:07 -04:00 · 2014-06-26 15:14:55 -04:00
10 changed files with 26 additions and 11 deletions
--- a/dependency-check-ant/pom.xml
+++ b/dependency-check-ant/pom.xml
@@ -21,7 +21,7 @@ Copyright (c) 2013 - Jeremy Long. All Rights Reserved.
    <parent>
        <groupId>org.owasp</groupId>
        <artifactId>dependency-check-parent</artifactId>
-        <version>1.2.2</version>
+        <version>1.2.3</version>
    </parent>
    <artifactId>dependency-check-ant</artifactId>
--- a/dependency-check-cli/pom.xml
+++ b/dependency-check-cli/pom.xml
@@ -21,7 +21,7 @@ Copyright (c) 2012 - Jeremy Long. All Rights Reserved.
    <parent>
        <groupId>org.owasp</groupId>
        <artifactId>dependency-check-parent</artifactId>
-        <version>1.2.2</version>
+        <version>1.2.3</version>
    </parent>
    <artifactId>dependency-check-cli</artifactId>
--- a/dependency-check-core/pom.xml
+++ b/dependency-check-core/pom.xml
@@ -20,7 +20,7 @@ Copyright (c) 2012 Jeremy Long. All Rights Reserved.
    <parent>
        <groupId>org.owasp</groupId>
        <artifactId>dependency-check-parent</artifactId>
-        <version>1.2.2</version>
+        <version>1.2.3</version>
    </parent>
    <artifactId>dependency-check-core</artifactId>
--- a/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java
+++ b/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java
@@ -100,9 +100,8 @@ public abstract class AbstractSuppressionAnalyzer extends AbstractAnalyzer {
    private void loadSuppressionData() throws SuppressionParseException {
        final SuppressionParser parser = new SuppressionParser();
        File file = null;
        file = new File(this.getClass().getClassLoader().getResource("dependencycheck-base-suppression.xml").getPath());
        try {
-            rules = parser.parseSuppressionRules(file);
+            rules = parser.parseSuppressionRules(this.getClass().getClassLoader().getResourceAsStream("dependencycheck-base-suppression.xml"));
        } catch (SuppressionParseException ex) {
            LOGGER.log(Level.FINE, "Unable to parse the base suppression data file", ex);
        }
--- a/dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionParser.java
+++ b/dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionParser.java
@@ -27,9 +27,11 @@ import java.io.Reader;
 import java.util.List;
 import java.util.logging.Level;
 import java.util.logging.Logger;
 import javax.xml.parsers.ParserConfigurationException;
 import javax.xml.parsers.SAXParser;
 import javax.xml.parsers.SAXParserFactory;
 import org.xml.sax.InputSource;
 import org.xml.sax.SAXException;
 import org.xml.sax.XMLReader;
@@ -66,10 +68,25 @@ public class SuppressionParser {
     * @throws SuppressionParseException thrown if the xml file cannot be parsed
     */
    public List<SuppressionRule> parseSuppressionRules(File file) throws SuppressionParseException {
        try {
            return parseSuppressionRules(new FileInputStream(file));
        } catch (IOException ex) {
            LOGGER.log(Level.FINE, null, ex);
            throw new SuppressionParseException(ex);
        }
    }
    /**
     * Parses the given xml stream and returns a list of the suppression rules contained.
     * 
     * @param inputStream an InputStream containing suppression rues
     * @return a list of suppression rules
     * @throws SuppressionParseException if the xml cannot be parsed
     */
    public List<SuppressionRule> parseSuppressionRules(InputStream inputStream) throws SuppressionParseException {
        try {
            final InputStream schemaStream = this.getClass().getClassLoader().getResourceAsStream("schema/suppression.xsd");
            final SuppressionHandler handler = new SuppressionHandler();
            final SAXParserFactory factory = SAXParserFactory.newInstance();
            factory.setNamespaceAware(true);
            factory.setValidating(true);
@@ -80,7 +97,6 @@ public class SuppressionParser {
            xmlReader.setErrorHandler(new SuppressionErrorHandler());
            xmlReader.setContentHandler(handler);
            final InputStream inputStream = new FileInputStream(file);
            final Reader reader = new InputStreamReader(inputStream, "UTF-8");
            final InputSource in = new InputSource(reader);
            //in.setEncoding("UTF-8");
--- a/dependency-check-core/src/main/resources/GrokAssembly.exe
+++ b/dependency-check-core/src/main/resources/GrokAssembly.exe
--- a/dependency-check-jenkins/pom.xml
+++ b/dependency-check-jenkins/pom.xml
@@ -6,7 +6,7 @@
    <parent>
        <groupId>org.owasp</groupId>
        <artifactId>dependency-check-parent</artifactId>
-        <version>1.2.2</version>
+        <version>1.2.3</version>
    </parent>
    <groupId>org.owasp</groupId>
--- a/dependency-check-maven/pom.xml
+++ b/dependency-check-maven/pom.xml
@@ -22,7 +22,7 @@ Copyright (c) 2013 Jeremy Long. All Rights Reserved.
    <parent>
        <groupId>org.owasp</groupId>
        <artifactId>dependency-check-parent</artifactId>
-        <version>1.2.2</version>
+        <version>1.2.3</version>
    </parent>
    <artifactId>dependency-check-maven</artifactId>
--- a/dependency-check-utils/pom.xml
+++ b/dependency-check-utils/pom.xml
@@ -21,7 +21,7 @@ Copyright (c) 2014 - Jeremy Long. All Rights Reserved.
    <parent>
        <groupId>org.owasp</groupId>
        <artifactId>dependency-check-parent</artifactId>
-        <version>1.2.2</version>
+        <version>1.2.3</version>
    </parent>
    <artifactId>dependency-check-utils</artifactId>
--- a/pom.xml
+++ b/pom.xml
@@ -20,7 +20,7 @@ Copyright (c) 2012 - Jeremy Long
    <groupId>org.owasp</groupId>
    <artifactId>dependency-check-parent</artifactId>
-    <version>1.2.2</version>
+    <version>1.2.3</version>
    <packaging>pom</packaging>
    <modules>
Author	SHA1	Message	Date
Jeremy Long	0badbfc4a0	version 1.2.3 Former-commit-id: c355adf9813220c4b3dac3450e80a83a245209a6	2014-06-28 06:06:33 -04:00
Jeremy Long	e042148c62	Merge branch 'colezlaw-master' Former-commit-id: 5654a0e5cd8b8524ac317a55a2af5a52408bc8ca	2014-06-26 20:33:45 -04:00
Jeremy Long	d8ba04ae7f	Merge branch 'master' of github.com:colezlaw/DependencyCheck into colezlaw-master Former-commit-id: 27bac793e5284df49c0804361c07d4ef559cb251	2014-06-26 20:33:35 -04:00
Jeremy Long	314d5fdad2	Merge branch 'colezlaw-suppression-fix' Former-commit-id: 1e7d9df774347ea043fef8ef3f5d6ca4aebaa15a	2014-06-26 20:32:07 -04:00
Will Stranathan	5c874cafd1	Fixed suppression analyzer to load from input stream fixing failure Former-commit-id: 4e6f8d7fddcf7ed26ad60b7aa8bc3a6b22ae19cc	2014-06-26 15:14:55 -04:00
Will Stranathan	8cafc14d09	Updated to 1.1 of GrokAssembly.exe to deal with exceptions Former-commit-id: 8c1d6ad04e378f2a19e2fcdc9ebc1eab12be9aef	2014-06-24 10:16:53 -04:00
Jeremy Long	25ac5033fc	snapshot version 1.2.3 Former-commit-id: 58f96e7ef71987a53626287f95b332f04b60a6f6	2014-06-22 21:33:58 -04:00