You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@myfaces.apache.org by lo...@apache.org on 2016/02/18 13:40:10 UTC
svn commit: r1731057 - /myfaces/tobago/trunk/pom.xml
Author: lofwyr
Date: Thu Feb 18 12:40:10 2016
New Revision: 1731057
URL: http://svn.apache.org/viewvc?rev=1731057&view=rev
Log:
TOBAGO-1532: Adding CVE check of OWASP to the release process
* define a (hard) score
Modified:
myfaces/tobago/trunk/pom.xml
Modified: myfaces/tobago/trunk/pom.xml
URL: http://svn.apache.org/viewvc/myfaces/tobago/trunk/pom.xml?rev=1731057&r1=1731056&r2=1731057&view=diff
==============================================================================
--- myfaces/tobago/trunk/pom.xml (original)
+++ myfaces/tobago/trunk/pom.xml Thu Feb 18 12:40:10 2016
@@ -1010,6 +1010,10 @@
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
<version>1.3.4</version>
+ <configuration>
+ <!-- TBD: check which score can be accepted -->
+ <failBuildOnCVSS>1</failBuildOnCVSS>
+ </configuration>
</plugin>
</plugins>
</pluginManagement>
@@ -1132,7 +1136,7 @@
<executions>
<execution>
<goals>
- <goal>check</goal>
+ <goal>aggregate</goal>
</goals>
</execution>
</executions>