github-mirrors/odc-analyzer
1
0
Fork 0
mirror of https://github.com/ysoftdevs/odc-analyzer.git synced 2026-06-13 17:54:30 +02:00
Code Issues 2 Packages Projects Releases Wiki Activity

Added new ODC scans for Java libraries. Those can scan even transitive dependencies and can be run before adding a new library to a project.

Browse Source
This commit is contained in:
Šesták Vít
2017-07-31 12:09:23 +02:00
parent bb0089cd97
commit 2049759430
31 changed files with 824 additions and 200 deletions
Download Patch File Download Diff File Expand all files Collapse all files
conf/application.conf.-example
+11
View File
@@ -19,6 +19,8 @@ play.i18n.langs = [ "en" ]
app{
host = "localhost" # You have to configure the host there. If you don't do so, all accesses via host will be prohibited. This is a protection against DNS rebind attacks.
secure = false # Use true iff you use HTTPS
# brand = "Your brand" # optional
# vulnerableLibraryAdvice = "If in doubt, contact our security team." # optional
}
yssdc{
@@ -141,6 +143,15 @@ slick.dbs.odc {
#play.modules.disabled+="play.api.cache.EhCacheModule"
#play.cache.path = "/home/user/.cache/odc-analysis"
## [Optional] Path to OWASP Dependency Check
## Once you configure it, you enable some checking features. You also need Maven on PATH.
## (!) Note that some properties like DB credentials might be passed as arguments and thus available via /proc (depends on OS).
# odc {
# odcPath = "/path/to/dependency-check-X.Y.Z-release"
# workingDirectory = "/path/to/odc/config" # directory ODC works in; you can use relative paths from this directory
# propertyFile = "odc.props" # path to ODC property file
# extraArgs = [] # Unstable conf; This might be changed or removed without any notice!!!
# }
silhouette {
# Authenticator settings
conf/reference.conf
+1
View File
@@ -2,3 +2,4 @@ play.modules.enabled += "modules.ConfigModule"
play.modules.enabled += "modules.SilhouetteModule"
play.modules.enabled += "modules.IssueTrackerExportModule"
play.modules.enabled += "modules.EmailExportModule"
play.modules.enabled += "modules.OdcModule"
conf/routes
+3
View File
@@ -33,6 +33,9 @@ GET /stats/libraries/all controllers.Statistics.allLibrarie
GET /stats/libraries/files controllers.Statistics.allFiles(selector: Option[String])
GET /stats/libraries/gavs controllers.Statistics.allGavs(selector: Option[String])
GET /advisor controllers.LibraryAdvisor.index(dependency: Option[String] ?= None)
POST /advisor/scan controllers.LibraryAdvisor.scan()
GET /notifications controllers.Notifications.listProjects(filter: Option[String])
POST /notifications/watch controllers.Notifications.watch(project: String, filter: Option[String])
POST /notifications/unwatch controllers.Notifications.unwatch(project: String, filter: Option[String])