mirror of
https://github.com/ysoftdevs/DependencyCheck.git
synced 2026-01-14 15:53:36 +01:00
640 lines
27 KiB
XML
640 lines
27 KiB
XML
<!--
|
|
This file is part of dependency-check-core.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
|
|
Copyright (c) 2012 Jeremy Long. All Rights Reserved.
|
|
-->
|
|
|
|
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
|
|
<modelVersion>4.0.0</modelVersion>
|
|
<parent>
|
|
<groupId>org.owasp</groupId>
|
|
<artifactId>dependency-check-parent</artifactId>
|
|
<version>1.1.0-SNAPSHOT</version>
|
|
</parent>
|
|
|
|
<artifactId>dependency-check-core</artifactId>
|
|
<packaging>jar</packaging>
|
|
|
|
<name>Dependency-Check Core</name>
|
|
<!-- begin copy from http://minds.coremedia.com/2012/09/11/problem-solved-deploy-multi-module-maven-project-site-as-github-pages/ -->
|
|
<distributionManagement>
|
|
<site>
|
|
<id>github-pages-site</id>
|
|
<name>Deployment through GitHub's site deployment plugin</name>
|
|
<url>${basedir}/../target/site/${project.version}/dependency-check-core</url>
|
|
</site>
|
|
</distributionManagement>
|
|
<!-- end copy -->
|
|
<build>
|
|
<resources>
|
|
<resource>
|
|
<directory>src/main/resources</directory>
|
|
<includes>
|
|
<include>**/*.properties</include>
|
|
<include>**/schema/*.xsd</include>
|
|
</includes>
|
|
<filtering>true</filtering>
|
|
</resource>
|
|
<resource>
|
|
<directory>${basedir}/..</directory>
|
|
<targetPath>META-INF</targetPath>
|
|
<includes>
|
|
<include>LICENSE.txt</include>
|
|
<include>NOTICE.txt</include>
|
|
</includes>
|
|
</resource>
|
|
<resource>
|
|
<directory>src/main/resources</directory>
|
|
<excludes>
|
|
<exclude>**/*.properties</exclude>
|
|
<exclude>**/*.gif</exclude>
|
|
<exclude>**/*.js</exclude>
|
|
<exclude>**/schema/**/*.xsd</exclude>
|
|
<exclude>**/schema/**/*.xml</exclude>
|
|
<exclude>**/schema/**/*.bat</exclude>
|
|
<exclude>**/schema/**/*.sh</exclude>
|
|
</excludes>
|
|
<filtering>false</filtering>
|
|
</resource>
|
|
</resources>
|
|
<testResources>
|
|
<testResource>
|
|
<directory>src/test/resources</directory>
|
|
<includes>
|
|
<include>**/*.properties</include>
|
|
</includes>
|
|
<filtering>true</filtering>
|
|
</testResource>
|
|
<testResource>
|
|
<directory>${basedir}/../src/test/resources</directory>
|
|
<filtering>false</filtering>
|
|
</testResource>
|
|
<testResource>
|
|
<directory>${basedir}/src/test/resources</directory>
|
|
<excludes>
|
|
<exclude>**/mysql-connector-java-5.1.27-bin.jar</exclude>
|
|
</excludes>
|
|
<filtering>false</filtering>
|
|
</testResource>
|
|
</testResources>
|
|
<plugins>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-dependency-plugin</artifactId>
|
|
<version>2.8</version>
|
|
<executions>
|
|
<execution>
|
|
<phase>generate-resources</phase>
|
|
<goals>
|
|
<goal>copy-dependencies</goal>
|
|
</goals>
|
|
<configuration>
|
|
<outputDirectory>${project.build.directory}/test-classes</outputDirectory>
|
|
<includeScope>provided</includeScope>
|
|
</configuration>
|
|
</execution>
|
|
</executions>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-jar-plugin</artifactId>
|
|
<version>2.4</version>
|
|
<executions>
|
|
<execution>
|
|
<id>jar</id>
|
|
<phase>package</phase>
|
|
<goals>
|
|
<goal>jar</goal>
|
|
</goals>
|
|
</execution>
|
|
<execution>
|
|
<id>test-jar</id>
|
|
<phase>package</phase>
|
|
<goals>
|
|
<goal>test-jar</goal>
|
|
</goals>
|
|
</execution>
|
|
</executions>
|
|
<configuration>
|
|
<archive>
|
|
<manifest>
|
|
<addDefaultImplementationEntries>true</addDefaultImplementationEntries>
|
|
</manifest>
|
|
</archive>
|
|
<excludes>
|
|
<exclude>**/checkstyle*</exclude>
|
|
</excludes>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.codehaus.mojo</groupId>
|
|
<artifactId>cobertura-maven-plugin</artifactId>
|
|
<version>2.6</version>
|
|
<configuration>
|
|
<instrumentation>
|
|
<ignores>
|
|
<ignore>.*\$KEYS\.class</ignore>
|
|
<ignore>.*\$Element\.class</ignore>
|
|
</ignores>
|
|
<excludes>
|
|
<exclude>.*\$KEYS\.class</exclude>
|
|
<exclude>.*\$Element\.class</exclude>
|
|
</excludes>
|
|
</instrumentation>
|
|
<check>
|
|
<branchRate>85</branchRate>
|
|
<lineRate>85</lineRate>
|
|
<haltOnFailure>false</haltOnFailure>
|
|
<totalBranchRate>85</totalBranchRate>
|
|
<totalLineRate>85</totalLineRate>
|
|
<packageLineRate>85</packageLineRate>
|
|
<packageBranchRate>85</packageBranchRate>
|
|
<regexes>
|
|
<regex>
|
|
<pattern>.*\$.*</pattern>
|
|
<branchRate>0</branchRate>
|
|
<lineRate>0</lineRate>
|
|
</regex>
|
|
<regex>
|
|
<pattern>org.owasp.dependencycheck.data.cpe.Fields</pattern>
|
|
<branchRate>0</branchRate>
|
|
<lineRate>0</lineRate>
|
|
</regex>
|
|
<regex>
|
|
<pattern>org.owasp.dependencycheck.App</pattern>
|
|
<branchRate>0</branchRate>
|
|
<lineRate>0</lineRate>
|
|
</regex>
|
|
</regexes>
|
|
</check>
|
|
</configuration>
|
|
<executions>
|
|
<execution>
|
|
<goals>
|
|
<goal>clean</goal>
|
|
</goals>
|
|
</execution>
|
|
</executions>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-surefire-plugin</artifactId>
|
|
<version>2.16</version>
|
|
<configuration>
|
|
<systemProperties>
|
|
<property>
|
|
<name>data.directory</name>
|
|
<value>${project.build.directory}/data</value>
|
|
</property>
|
|
<property>
|
|
<name>temp.directory</name>
|
|
<value>${project.build.directory}/temp</value>
|
|
</property>
|
|
</systemProperties>
|
|
<excludes>
|
|
<exclude>**/*IntegrationTest.java</exclude>
|
|
<exclude>**/*MySQLTest.java</exclude>
|
|
</excludes>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-failsafe-plugin</artifactId>
|
|
<version>2.16</version>
|
|
<configuration>
|
|
<systemProperties>
|
|
<property>
|
|
<name>data.directory</name>
|
|
<value>${project.build.directory}/data</value>
|
|
</property>
|
|
</systemProperties>
|
|
<includes>
|
|
<include>**/*IntegrationTest.java</include>
|
|
</includes>
|
|
</configuration>
|
|
<executions>
|
|
<execution>
|
|
<goals>
|
|
<goal>integration-test</goal>
|
|
<goal>verify</goal>
|
|
</goals>
|
|
</execution>
|
|
</executions>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-site-plugin</artifactId>
|
|
<version>3.3</version>
|
|
<dependencies>
|
|
<dependency>
|
|
<groupId>org.apache.maven.doxia</groupId>
|
|
<artifactId>doxia-module-markdown</artifactId>
|
|
<version>1.5</version>
|
|
</dependency>
|
|
</dependencies>
|
|
<configuration>
|
|
<skipDeploy>true</skipDeploy>
|
|
<reportPlugins>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-project-info-reports-plugin</artifactId>
|
|
<version>2.7</version>
|
|
<reportSets>
|
|
<reportSet>
|
|
<reports>
|
|
<report>index</report>
|
|
<report>summary</report>
|
|
<report>license</report>
|
|
<report>help</report>
|
|
</reports>
|
|
</reportSet>
|
|
</reportSets>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-javadoc-plugin</artifactId>
|
|
<version>2.9.1</version>
|
|
<reportSets>
|
|
<reportSet>
|
|
<id>default</id>
|
|
<reports>
|
|
<report>javadoc</report>
|
|
</reports>
|
|
</reportSet>
|
|
</reportSets>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.codehaus.mojo</groupId>
|
|
<artifactId>versions-maven-plugin</artifactId>
|
|
<version>2.1</version>
|
|
<reportSets>
|
|
<reportSet>
|
|
<reports>
|
|
<report>dependency-updates-report</report>
|
|
<report>plugin-updates-report</report>
|
|
</reports>
|
|
</reportSet>
|
|
</reportSets>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-jxr-plugin</artifactId>
|
|
<version>2.4</version>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.codehaus.mojo</groupId>
|
|
<artifactId>cobertura-maven-plugin</artifactId>
|
|
<version>2.6</version>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-surefire-report-plugin</artifactId>
|
|
<version>2.16</version>
|
|
<reportSets>
|
|
<reportSet>
|
|
<reports>
|
|
<report>report-only</report>
|
|
</reports>
|
|
</reportSet>
|
|
<reportSet>
|
|
<id>integration-tests</id>
|
|
<reports>
|
|
<report>report-only</report>
|
|
<report>failsafe-report-only</report>
|
|
</reports>
|
|
</reportSet>
|
|
</reportSets>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.codehaus.mojo</groupId>
|
|
<artifactId>taglist-maven-plugin</artifactId>
|
|
<version>2.4</version>
|
|
<configuration>
|
|
<tagListOptions>
|
|
<tagClasses>
|
|
<tagClass>
|
|
<displayName>Todo Work</displayName>
|
|
<tags>
|
|
<tag>
|
|
<matchString>todo</matchString>
|
|
<matchType>ignoreCase</matchType>
|
|
</tag>
|
|
<tag>
|
|
<matchString>FIXME</matchString>
|
|
<matchType>exact</matchType>
|
|
</tag>
|
|
</tags>
|
|
</tagClass>
|
|
</tagClasses>
|
|
</tagListOptions>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-checkstyle-plugin</artifactId>
|
|
<version>2.11</version>
|
|
<configuration>
|
|
<enableRulesSummary>false</enableRulesSummary>
|
|
<configLocation>${basedir}/config/checkstyle-checks.xml</configLocation>
|
|
<headerLocation>${basedir}/config/checkstyle-header.txt</headerLocation>
|
|
<suppressionsLocation>${basedir}/config/checkstyle-suppressions.xml</suppressionsLocation>
|
|
<suppressionsFileExpression>checkstyle.suppressions.file</suppressionsFileExpression>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-pmd-plugin</artifactId>
|
|
<version>3.0.1</version>
|
|
<configuration>
|
|
<targetJdk>1.6</targetJdk>
|
|
<linkXref>true</linkXref>
|
|
<sourceEncoding>utf-8</sourceEncoding>
|
|
<excludes>
|
|
<exclude>**/generated/*.java</exclude>
|
|
</excludes>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.codehaus.mojo</groupId>
|
|
<artifactId>findbugs-maven-plugin</artifactId>
|
|
<version>2.5.3</version>
|
|
</plugin>
|
|
<dependency>
|
|
<groupId>org.codehaus.mojo</groupId>
|
|
<artifactId>javancss-maven-plugin</artifactId>
|
|
<version>2.0</version>
|
|
</dependency>
|
|
</reportPlugins>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-compiler-plugin</artifactId>
|
|
<version>3.1</version>
|
|
<configuration>
|
|
<showDeprecation>false</showDeprecation>
|
|
<source>1.6</source>
|
|
<target>1.6</target>
|
|
</configuration>
|
|
</plugin>
|
|
</plugins>
|
|
</build>
|
|
<dependencies>
|
|
<dependency>
|
|
<groupId>org.apache.lucene</groupId>
|
|
<artifactId>lucene-test-framework</artifactId>
|
|
<version>4.3.1</version>
|
|
<scope>test</scope>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>com.google.code.findbugs</groupId>
|
|
<artifactId>annotations</artifactId>
|
|
<version>2.0.1</version>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>commons-cli</groupId>
|
|
<artifactId>commons-cli</artifactId>
|
|
<version>1.2</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>commons-io</groupId>
|
|
<artifactId>commons-io</artifactId>
|
|
<version>2.4</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>commons-lang</groupId>
|
|
<artifactId>commons-lang</artifactId>
|
|
<version>2.5</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.lucene</groupId>
|
|
<artifactId>lucene-core</artifactId>
|
|
<version>4.5.1</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.lucene</groupId>
|
|
<artifactId>lucene-analyzers-common</artifactId>
|
|
<version>4.5.1</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.lucene</groupId>
|
|
<artifactId>lucene-queryparser</artifactId>
|
|
<version>4.5.1</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.velocity</groupId>
|
|
<artifactId>velocity</artifactId>
|
|
<version>1.7</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.velocity</groupId>
|
|
<artifactId>velocity-tools</artifactId>
|
|
<version>2.0</version>
|
|
<!-- very limited use of the velocity-tools, not all of the dependencies are needed-->
|
|
<exclusions>
|
|
<exclusion>
|
|
<groupId>commons-chain</groupId>
|
|
<artifactId>commons-chain</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>javax.servlet</groupId>
|
|
<artifactId>servlet-api</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>commons-validator</groupId>
|
|
<artifactId>commons-validator</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>dom4j</groupId>
|
|
<artifactId>dom4j</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>sslext</groupId>
|
|
<artifactId>sslext</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>org.apache.struts</groupId>
|
|
<artifactId>struts-core</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>antlr</groupId>
|
|
<artifactId>antlr</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>org.apache.struts</groupId>
|
|
<artifactId>struts-taglib</artifactId>
|
|
</exclusion>
|
|
<exclusion>
|
|
<groupId>org.apache.struts</groupId>
|
|
<artifactId>struts-tiles</artifactId>
|
|
</exclusion>
|
|
</exclusions>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>com.h2database</groupId>
|
|
<artifactId>h2</artifactId>
|
|
<version>1.3.172</version>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.jsoup</groupId>
|
|
<artifactId>jsoup</artifactId>
|
|
<version>1.7.2</version>
|
|
<type>jar</type>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.commons</groupId>
|
|
<artifactId>commons-compress</artifactId>
|
|
<version>1.5</version>
|
|
</dependency>
|
|
<!-- The following dependencies are only used during testing -->
|
|
<dependency>
|
|
<groupId>org.apache.maven.scm</groupId>
|
|
<artifactId>maven-scm-provider-cvsexe</artifactId>
|
|
<version>1.8.1</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.springframework</groupId>
|
|
<artifactId>spring-webmvc</artifactId>
|
|
<version>2.5.5</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>com.hazelcast</groupId>
|
|
<artifactId>hazelcast</artifactId>
|
|
<version>2.5</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>net.sf.ehcache</groupId>
|
|
<artifactId>ehcache-core</artifactId>
|
|
<version>2.2.0</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.struts</groupId>
|
|
<artifactId>struts2-core</artifactId>
|
|
<version>2.1.2</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.mortbay.jetty</groupId>
|
|
<artifactId>jetty</artifactId>
|
|
<version>6.1.0</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.axis2</groupId>
|
|
<artifactId>axis2-spring</artifactId>
|
|
<version>1.4.1</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.axis2</groupId>
|
|
<artifactId>axis2-adb</artifactId>
|
|
<version>1.4.1</version>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.apache.geronimo.daytrader</groupId>
|
|
<artifactId>daytrader-ear</artifactId>
|
|
<version>2.1.7</version>
|
|
<type>ear</type>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.glassfish.main.admingui</groupId>
|
|
<artifactId>war</artifactId>
|
|
<version>4.0</version>
|
|
<type>war</type>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
<dependency>
|
|
<groupId>org.dojotoolkit</groupId>
|
|
<artifactId>dojo-war</artifactId>
|
|
<version>1.3.0</version>
|
|
<type>war</type>
|
|
<scope>provided</scope>
|
|
<optional>true</optional>
|
|
</dependency>
|
|
</dependencies>
|
|
<profiles>
|
|
<profile>
|
|
<id>MySQL-IntegrationTest</id>
|
|
<activation>
|
|
<property>
|
|
<name>mysql</name>
|
|
<!--value>test</value-->
|
|
</property>
|
|
</activation>
|
|
<build>
|
|
<plugins>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-surefire-plugin</artifactId>
|
|
<version>2.16</version>
|
|
<configuration>
|
|
<skip>true</skip>
|
|
</configuration>
|
|
</plugin>
|
|
<plugin>
|
|
<groupId>org.apache.maven.plugins</groupId>
|
|
<artifactId>maven-failsafe-plugin</artifactId>
|
|
<version>2.16</version>
|
|
<configuration>
|
|
<systemProperties>
|
|
<property>
|
|
<name>data.driver_path</name>
|
|
<value>${basedir}/${driver_path}</value>
|
|
</property>
|
|
<property>
|
|
<name>data.driver_name</name>
|
|
<value>${driver_name}</value>
|
|
</property>
|
|
<property>
|
|
<name>data.connection_string</name>
|
|
<value>${connection_string}</value>
|
|
</property>
|
|
</systemProperties>
|
|
<includes>
|
|
<include>**/*MySQLTest.java</include>
|
|
</includes>
|
|
</configuration>
|
|
<executions>
|
|
<execution>
|
|
<goals>
|
|
<goal>integration-test</goal>
|
|
<goal>verify</goal>
|
|
</goals>
|
|
</execution>
|
|
</executions>
|
|
</plugin>
|
|
</plugins>
|
|
</build>
|
|
</profile>
|
|
</profiles>
|
|
</project>
|