You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tika.apache.org by "Lewis John McGibbney (Jira)" <ji...@apache.org> on 2022/02/10 16:45:00 UTC

[jira] [Resolved] (TIKA-3648) Fail build if ossindex-maven-plugin violation is detected

     [ https://issues.apache.org/jira/browse/TIKA-3648?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Lewis John McGibbney resolved TIKA-3648.
----------------------------------------
    Resolution: Fixed

With dependabot now activated our goal should be to keep things up-to-date. 

> Fail build if ossindex-maven-plugin violation is detected
> ---------------------------------------------------------
>
>                 Key: TIKA-3648
>                 URL: https://issues.apache.org/jira/browse/TIKA-3648
>             Project: Tika
>          Issue Type: Improvement
>          Components: build, security
>    Affects Versions: 2.2.1
>            Reporter: Lewis John McGibbney
>            Assignee: Lewis John McGibbney
>            Priority: Critical
>
> The ossindex-maven-plugin can really assist us in detecting and preventing security vulnerabilities and also mitigating associated risk and exposure.
> I propose to fail the build if ossindex-maven-plugin violation is detected
> https://github.com/apache/tika/blob/main/tika-parent/pom.xml#L639



--
This message was sent by Atlassian Jira
(v8.20.1#820001)