github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-14 07:43:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
b24c63cb49a9d978e483c1e2ada07ec1b2785ddc
DependencyCheck/dependency-check-cli
History
Jeremy Long 38f69fd7cc updated to support the new Settings implementation 
Former-commit-id: e2a2b98e2742580e52750a1a1bcdbeddae3c5787
2014-04-16 08:12:16 -04:00
..
config
updated header to check for cli instead of core
2014-01-25 11:02:10 -05:00
src
updated to support the new Settings implementation
2014-04-16 08:12:16 -04:00
LICENSE.txt
updated license to Apache 2.0
2014-01-16 18:34:02 -05:00
NOTICE.txt
releasing updates from private repo
2013-07-31 10:21:31 -04:00
pom.xml
updated to version 1.1.5-SNAPSHOT
2014-03-29 08:37:03 -04:00
README.md
updated license to Apache 2.0
2014-01-16 18:34:02 -05:00

README.md

Dependency-Check Command Line

Dependency-Check Command Line can be used to check project dependencies for published security vulnerabilities. The checks performed are a "best effort" and as such, there could be false positives as well as false negatives. However, vulnerabilities in 3rd party components is a well-known problem and is currently documented in the 2013 OWASP Top 10 as A9 - Using Components with Known Vulnerabilities.

Documentation and links to production binary releases can be found on the github pages.

Mailing List

Subscribe: dependency-check+subscribe@googlegroups.com

Post: dependency-check@googlegroups.com

Copyright & License

Dependency-Check is Copyright (c) 2012-2014 Jeremy Long. All Rights Reserved.

Permission to modify and redistribute is granted under the terms of the Apache 2.0 license. See the LICENSE.txt file for the full license.

Dependency-Check Command Line makes use of other open source libraries. Please see the NOTICE.txt file for more information.

Reference in New Issue View Git Blame Copy Permalink