You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@druid.apache.org by cw...@apache.org on 2021/07/13 08:43:57 UTC
[druid] branch master updated: update dependency-check cron job to
purge cache before checking (#11436)
This is an automated email from the ASF dual-hosted git repository.
cwylie pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/druid.git
The following commit(s) were added to refs/heads/master by this push:
new ace4b80 update dependency-check cron job to purge cache before checking (#11436)
ace4b80 is described below
commit ace4b807f4a2798728ecbf28c65420423dc2b482
Author: zachjsh <za...@gmail.com>
AuthorDate: Tue Jul 13 04:43:31 2021 -0400
update dependency-check cron job to purge cache before checking (#11436)
The dependency-check cron job now purges any caches NVD before performing dependency check. Without this, a high CVE vulernability was reported in this job a few months after the nvd was updated for it.
---
.travis.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.travis.yml b/.travis.yml
index e76ecf5..4211f18 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -713,7 +713,7 @@ jobs:
stage: cron
install: skip
script: |-
- ${MVN} dependency-check:aggregate -pl '!integration-tests' || { echo "
+ ${MVN} dependency-check:purge dependency-check:aggregate -pl '!integration-tests' || { echo "
The OWASP dependency check has found security vulnerabilities. Please use a newer version
of the dependency that does not have vulnerabilities. To see a report run
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@druid.apache.org
For additional commands, e-mail: commits-help@druid.apache.org