github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-14 07:43:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
00a35ce93f8e170a5a95464d92bdd94ef0a7f583
DependencyCheck/README.md
Jeremy Long c9fd6d6cf8 version 0.2.6.1 
Former-commit-id: 216985f090c33a5d79c9389afd714a9423f15312
2013-03-16 16:56:34 -04:00

1.1 KiB
Raw Blame History

DependencyCheck

DependencyCheck is a utility that attempts to detect publically disclosed vulnerabilities contained within project dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries.

More information can be found on the wiki.

Usage

$ mvn package
$ cd target
$ java -jar dependency-check-0.2.6.1.jar -h
$ java -jar dependency-check-0.2.6.1.jar -a Testing -out . -scan ./test-classes -scan ./lib

Then load the resulting 'DependencyCheck-Report.html' into your favorite browser.

Mailing List

Subscribe: [dependency-check+subscribe@googlegroups.com] subscribe
Post: [dependency-check@googlegroups.com] post

License

GPLv3

Copyright (c) 2012-2013 Jeremy Long. All Rights Reserved.

Reference in New Issue View Git Blame Copy Permalink