You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@myfaces.apache.org by lo...@apache.org on 2016/02/18 13:40:10 UTC

svn commit: r1731057 - /myfaces/tobago/trunk/pom.xml

Author: lofwyr
Date: Thu Feb 18 12:40:10 2016
New Revision: 1731057

URL: http://svn.apache.org/viewvc?rev=1731057&view=rev
Log:
TOBAGO-1532: Adding CVE check of OWASP to the release process
* define a (hard) score

Modified:
    myfaces/tobago/trunk/pom.xml

Modified: myfaces/tobago/trunk/pom.xml
URL: http://svn.apache.org/viewvc/myfaces/tobago/trunk/pom.xml?rev=1731057&r1=1731056&r2=1731057&view=diff
==============================================================================
--- myfaces/tobago/trunk/pom.xml (original)
+++ myfaces/tobago/trunk/pom.xml Thu Feb 18 12:40:10 2016
@@ -1010,6 +1010,10 @@
           <groupId>org.owasp</groupId>
           <artifactId>dependency-check-maven</artifactId>
           <version>1.3.4</version>
+          <configuration>
+            <!-- TBD: check which score can be accepted -->
+            <failBuildOnCVSS>1</failBuildOnCVSS>
+          </configuration>
         </plugin>
       </plugins>
     </pluginManagement>
@@ -1132,7 +1136,7 @@
             <executions>
               <execution>
                 <goals>
-                  <goal>check</goal>
+                  <goal>aggregate</goal>
                 </goals>
               </execution>
             </executions>