github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-14 15:53:36 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
608a2351e5671e4375484639b176d93c989d3ac9
DependencyCheck/dependency-check-cli
History
Jeremy Long 72e15c94c5 reverting back to v1.0.1 
Former-commit-id: a6ee1b41a759002095d77b2e341502c0f66b3151
2013-08-07 22:37:35 -04:00
..
config
releasing updates from private repo
2013-07-31 10:21:31 -04:00
src
reverting back to v1.0.1
2013-08-07 22:37:35 -04:00
LICENSE.txt
releasing updates from private repo
2013-07-31 10:21:31 -04:00
NOTICE.txt
releasing updates from private repo
2013-07-31 10:21:31 -04:00
pom.xml
reverting back to v1.0.1
2013-08-07 22:37:35 -04:00
README.md
releasing updates from private repo
2013-07-31 10:21:31 -04:00

README.md

Dependency-Check

Dependency-Check is a utility that attempts to detect publicly disclosed vulnerabilities contained within project dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries.

More information can be found on the wiki.

Usage

$ mvn package
$ cd target/release/bin
$ dependency-check-[version].sh -h
$ dependency-check-[version].sh -a Testing -scan ../../test-classes

Then load the resulting 'DependencyCheck-Report.html' into your favorite browser.

Mailing List

Subscribe: [dependency-check+subscribe@googlegroups.com] subscribe

Post: [dependency-check@googlegroups.com] post

Copyright & License

Dependency-Check is Copyright (c) 2012-2013 Jeremy Long. All Rights Reserved.

Permission to modify and redistribute is granted under the terms of the GPLv3 license. See the [LICENSE.txt] GPLv3 file for the full license.

Dependency-Check makes use of several other open source libraries. Please see the [NOTICE.txt] notices file for more information.

Reference in New Issue View Git Blame Copy Permalink