You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@tomee.apache.org by rz...@apache.org on 2021/01/19 08:03:26 UTC

[tomee] branch tomee-7.0.x updated: TOMEE-2957: Fixes OWASP configuration on Jenkins, updates OWASP to 6.0.5 (see https://github.com/jeremylong/DependencyCheck/blob/main/RELEASE_NOTES.md)

This is an automated email from the ASF dual-hosted git repository.

rzo1 pushed a commit to branch tomee-7.0.x
in repository https://gitbox.apache.org/repos/asf/tomee.git


The following commit(s) were added to refs/heads/tomee-7.0.x by this push:
     new 453522d  TOMEE-2957: Fixes OWASP configuration on Jenkins, updates OWASP to 6.0.5 (see https://github.com/jeremylong/DependencyCheck/blob/main/RELEASE_NOTES.md)
     new 3f079b1  Merge pull request #753 from rzo1/backport-7.0.x-fix-owasp
453522d is described below

commit 453522df79ee078d07f45d03ba116e51ac17d7ee
Author: Richard Zowalla <13...@users.noreply.github.com>
AuthorDate: Tue Jan 19 08:54:37 2021 +0100

    TOMEE-2957: Fixes OWASP configuration on Jenkins, updates OWASP to 6.0.5 (see https://github.com/jeremylong/DependencyCheck/blob/main/RELEASE_NOTES.md)
---
 pom.xml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/pom.xml b/pom.xml
index f9b3069..b0345af 100644
--- a/pom.xml
+++ b/pom.xml
@@ -348,7 +348,10 @@
         <plugin>
           <groupId>org.owasp</groupId>
           <artifactId>dependency-check-maven</artifactId>
-          <version>4.0.0</version>
+          <version>6.0.5</version>
+          <configuration>
+            <suppressionFiles>owasp-dc-suppression.xml</suppressionFiles>
+          </configuration>
         </plugin>
       </plugins>
     </pluginManagement>
@@ -644,7 +647,6 @@
             <configuration>
               <skipProvidedScope>true</skipProvidedScope>
               <skipRuntimeScope>true</skipRuntimeScope>
-              <suppressionFiles>${maven.multiModuleProjectDirectory}/owasp-dc-suppression.xml</suppressionFiles>
             </configuration>
             <executions>
               <execution>
@@ -668,7 +670,6 @@
               <skipProvidedScope>true</skipProvidedScope>
               <skipRuntimeScope>true</skipRuntimeScope>
               <failBuildOnCVSS>8.0</failBuildOnCVSS>
-              <suppressionFiles>${maven.multiModuleProjectDirectory}/owasp-dc-suppression.xml</suppressionFiles>
             </configuration>
             <executions>
               <execution>