You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Kevin Risden (Jira)" <ji...@apache.org> on 2019/11/09 15:16:00 UTC

[jira] [Commented] (KNOX-2098) OWASP Add Nov 2019 suppressions for false positives

    [ https://issues.apache.org/jira/browse/KNOX-2098?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16970839#comment-16970839 ] 

Kevin Risden commented on KNOX-2098:
------------------------------------


{code:java}
mvn install -DskipTests
mvn -Powasp verify
{code}

Then the dependency check report will be in the top level target directory. 

> OWASP Add Nov 2019 suppressions for false positives
> ---------------------------------------------------
>
>                 Key: KNOX-2098
>                 URL: https://issues.apache.org/jira/browse/KNOX-2098
>             Project: Apache Knox
>          Issue Type: Task
>          Components: Build
>            Reporter: Kevin Risden
>            Assignee: Kevin Risden
>            Priority: Major
>             Fix For: 1.4.0
>
>
> KNOX-1660 did this about a year ago. Would be good to add new suppressions since there are a few false positives in the owasp report.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)