bea/HidekoBot
1
0
Fork 0
Code Issues 8 Pull Requests 7 Packages Projects Releases Wiki Activity

Compare commits

base: bea:0ab4a0be27f8db910439efb68e825e6a97e1a10f
Branches Tags
bea:main bea:develop bea:renovate/commons-codec-commons-codec-1.x bea:renovate/org.junit.jupiter-junit-jupiter-api-5.x bea:renovate/org.xerial-sqlite-jdbc-3.x bea:renovate/net.dv8tion-jda-6.x bea:renovate/org.jsoup-jsoup-1.x bea:renovate/org.owasp-dependency-check-maven-12.x bea:renovate/net.dv8tion-jda-5.x
...
compare: bea:renovate/net.dv8tion-jda-5.x
Branches Tags
bea:develop bea:main bea:renovate/commons-codec-commons-codec-1.x bea:renovate/org.junit.jupiter-junit-jupiter-api-5.x bea:renovate/org.xerial-sqlite-jdbc-3.x bea:renovate/net.dv8tion-jda-6.x bea:renovate/org.jsoup-jsoup-1.x bea:renovate/org.owasp-dependency-check-maven-12.x bea:renovate/net.dv8tion-jda-5.x

61 Commits
0ab4a0be27 ... renovate/n

Author SHA1 Message Date
Renovate Bot
fc00467059 Update dependency net.dv8tion:JDA to v5.6.1
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-06-08 19:00:28 +00:00
Beatrice Dellacà
f1969c2043 Update README.MD
All checks were successful
continuous-integration/drone/push Build is passing
Details
2025-06-01 21:02:56 +02:00
Beatrice Dellacà
acad4bad8b Merge pull request 'Update dependency org.junit.jupiter:junit-jupiter-api to v5.13.0' (#47) from renovate/org.junit.jupiter-junit-jupiter-api-5.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #47
 2025-06-01 20:25:10 +02:00
Beatrice Dellacà
4ce9acd428 Merge pull request 'Update dependency org.json:json to v20250517' (#46) from renovate/org.json-json-20250517.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #46
 2025-06-01 20:25:04 +02:00
Beatrice Dellacà
2ab52bd713 Merge pull request 'Update dependency com.google.protobuf:protobuf-java to v4.31.1' (#45) from renovate/com.google.protobuf-protobuf-java-4.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #45
 2025-06-01 20:24:56 +02:00
Beatrice Dellacà
f38e34c1ce Merge pull request 'Update dependency com.google.code.gson:gson to v2.13.1' (#43) from renovate/com.google.code.gson-gson-2.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #43
 2025-06-01 20:24:46 +02:00
Beatrice Dellacà
f87854459f Merge pull request 'Update dependency net.dv8tion:JDA to v5.5.1' (#42) from renovate/net.dv8tion-jda-5.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #42
 2025-06-01 20:24:31 +02:00
Renovate Bot
72c4ae2133 Update dependency org.junit.jupiter:junit-jupiter-api to v5.13.0
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-05-30 11:00:27 +00:00
Renovate Bot
7f4ca6aa8e Update dependency com.google.protobuf:protobuf-java to v4.31.1
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-05-28 20:00:24 +00:00
Renovate Bot
c3793aa159 Update dependency org.json:json to v20250517
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-05-17 14:00:27 +00:00
Renovate Bot
63fc1feaea Update dependency net.dv8tion:JDA to v5.5.1
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-05-03 12:00:25 +00:00
Renovate Bot
71d646ff69 Update dependency com.google.code.gson:gson to v2.13.1
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-04-24 02:00:23 +00:00
Beatrice Dellacà
48d537d2db Merge pull request 'Update dependency com.google.code.gson:gson to v2.13.0' (#41) from renovate/com.google.code.gson-gson-2.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #41
 2025-04-13 00:55:18 +02:00
Beatrice Dellacà
136447b9df Merge pull request 'Update dependency org.junit.jupiter:junit-jupiter-api to v5.12.2' (#40) from renovate/org.junit.jupiter-junit-jupiter-api-5.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #40
 2025-04-13 00:54:58 +02:00
Beatrice Dellacà
372949a9e0 Merge pull request 'Update dependency org.apache.commons:commons-text to v1.13.1' (#39) from renovate/org.apache.commons-commons-text-1.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #39
 2025-04-13 00:54:46 +02:00
Beatrice Dellacà
4f4549a81e Merge pull request 'Update dependency org.owasp:dependency-check-maven to v12.1.1' (#38) from renovate/org.owasp-dependency-check-maven-12.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #38
 2025-04-13 00:54:33 +02:00
Beatrice Dellacà
b0dd1c21b2 Merge pull request 'Update dependency net.dv8tion:JDA to v5.3.2' (#37) from renovate/net.dv8tion-jda-5.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #37
 2025-04-13 00:54:12 +02:00
Renovate Bot
d46368f0ce Update dependency com.google.code.gson:gson to v2.13.0
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-04-11 15:00:26 +00:00
Renovate Bot
2032dc1d0e Update dependency org.junit.jupiter:junit-jupiter-api to v5.12.2
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-04-11 15:00:24 +00:00
Renovate Bot
9c099230c9 Update dependency org.apache.commons:commons-text to v1.13.1
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-04-10 23:00:22 +00:00
Renovate Bot
f2134cbdb9 Update dependency org.owasp:dependency-check-maven to v12.1.1
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-04-05 13:00:31 +00:00
Renovate Bot
97e846c3dc Update dependency net.dv8tion:JDA to v5.3.2
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-04-05 11:00:29 +00:00
Beatrice Dellacà
7f16a011b3 update pipeline
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is passing
Details
2025-03-29 16:45:14 +01:00
Beatrice Dellacà
b32ece3f88 Update .drone.yml
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2025-03-29 13:02:17 +01:00
Beatrice Dellacà
681785ef0d Merge pull request 'Update dependency net.dv8tion:JDA to v5.3.1' (#36) from renovate/net.dv8tion-jda-5.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #36
 2025-03-28 14:07:57 +01:00
Renovate Bot
a72b6f690b Update dependency net.dv8tion:JDA to v5.3.1
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-03-27 18:00:34 +00:00
Beatrice Dellacà
645fb5f4a6 build on arm
All checks were successful
continuous-integration/drone/push Build is passing
Details
2025-03-27 00:37:54 +01:00
Beatrice Dellacà
a228067cce update drone
Some checks failed
continuous-integration/drone/push Build is failing
Details
2025-03-27 00:36:31 +01:00
Beatrice Dellacà
4f0eb7ce74 Update .drone.yml
All checks were successful
continuous-integration/drone/push Build is passing
Details
2025-03-27 00:22:01 +01:00
Beatrice Dellacà
a7e36299b6 Update .drone.yml
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2025-03-27 00:21:29 +01:00
Beatrice Dellacà
1e7c43e360 Merge pull request 'Update dependency com.google.protobuf:protobuf-java to v4.30.2' (#35) from renovate/com.google.protobuf-protobuf-java-4.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #35
 2025-03-26 23:21:50 +01:00
Renovate Bot
2a4a80cc3f Update dependency com.google.protobuf:protobuf-java to v4.30.2
All checks were successful
continuous-integration/drone/pr Build is passing
Details
2025-03-26 20:00:37 +00:00
Beatrice Dellacà
a50e8c050b update pull requests pipe
All checks were successful
continuous-integration/drone/push Build is passing
Details
2025-03-25 18:26:00 +01:00
Beatrice Dellacà
f7c1b096bc Merge pull request 'Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin to v5.1.0.4751' (#34) from renovate/org.sonarsource.scanner.maven-sonar-maven-plugin-5.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #34
 2025-03-25 14:06:04 +01:00
Renovate Bot
884814064c Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin to v5.1.0.4751
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-25 11:00:43 +00:00
Beatrice Dellacà
ce0938bc2c Merge pull request 'Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin to v5' (#33) from renovate/org.sonarsource.scanner.maven-sonar-maven-plugin-5.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/promote/production Build is passing
Details 
Reviewed-on: #33
 2025-03-23 12:55:48 +01:00
Renovate Bot
aabfbd3020 Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin to v5
Some checks reported errors
continuous-integration/drone/pr Build was killed
Details
2025-03-23 11:28:03 +00:00
Beatrice Dellacà
25bc5a3ef2 Merge pull request 'Update dependency commons-codec:commons-codec to v1.18.0' (#25) from renovate/commons-codec-commons-codec-1.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #25
 2025-03-23 11:33:45 +01:00
Beatrice Dellacà
ab52f30eb2 Merge pull request 'Update dependency org.apache.commons:commons-text to v1.13.0' (#26) from renovate/org.apache.commons-commons-text-1.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #26
 2025-03-23 11:33:36 +01:00
Beatrice Dellacà
2e0c2e4e14 Merge pull request 'Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.11.2' (#27) from renovate/org.apache.maven.plugins-maven-javadoc-plugin-3.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #27
 2025-03-23 11:33:29 +01:00
Beatrice Dellacà
edf896efb0 Merge pull request 'Update dependency org.yaml:snakeyaml to v2.4' (#31) from renovate/org.yaml-snakeyaml-2.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #31
 2025-03-23 11:33:20 +01:00
Beatrice Dellacà
bd7355add9 Merge pull request 'Update dependency org.json:json to v20250107' (#32) from renovate/org.json-json-20250107.x into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #32
 2025-03-23 11:33:05 +01:00
Renovate Bot
6d210551af Update dependency org.json:json to v20250107
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 10:25:08 +00:00
Renovate Bot
abd3c02be6 Update dependency org.yaml:snakeyaml to v2.4
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 10:25:06 +00:00
Renovate Bot
50749f2108 Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.11.2
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 10:25:04 +00:00
Renovate Bot
fc7b6d54d1 Update dependency org.apache.commons:commons-text to v1.13.0
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 10:25:01 +00:00
Renovate Bot
f5d684c5a4 Update dependency commons-codec:commons-codec to v1.18.0
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 10:24:59 +00:00
Beatrice Dellacà
5ea12aa693 Merge pull request 'Update dependency org.junit.jupiter:junit-jupiter-api to v5.12.1' (#29) from renovate/org.junit.jupiter-junit-jupiter-api-5.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #29
 2025-03-23 10:38:52 +01:00
Beatrice Dellacà
5c4f7e4252 Merge pull request 'Update dependency org.jsoup:jsoup to v1.19.1' (#28) from renovate/org.jsoup-jsoup-1.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #28
 2025-03-23 10:38:35 +01:00
Beatrice Dellacà
d9dcde7560 Merge pull request 'Update dependency com.google.code.gson:gson to v2.12.1' (#24) from renovate/com.google.code.gson-gson-2.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #24
 2025-03-23 10:38:05 +01:00
Beatrice Dellacà
64762a9a4f Merge pull request 'Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin to v3.11.0.3922' (#30) from renovate/org.sonarsource.scanner.maven-sonar-maven-plugin-3.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #30
 2025-03-23 10:37:32 +01:00
Beatrice Dellacà
4542985431 Merge pull request 'Update dependency org.slf4j:slf4j-simple to v2.0.17' (#23) from renovate/org.slf4j-slf4j-simple-2.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #23
 2025-03-23 10:31:39 +01:00
Beatrice Dellacà
88d4b6461b Merge pull request 'Update dependency org.slf4j:slf4j-api to v2.0.17' (#22) from renovate/org.slf4j-slf4j-api-2.x into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #22
 2025-03-23 10:31:28 +01:00
Beatrice Dellacà
e8f1c85f08 Merge pull request 'Update dependency com.google.protobuf:protobuf-java to v4.30.1' (#21) from renovate/com.google.protobuf-protobuf-java-4.x into main
Some checks reported errors
continuous-integration/drone/push Build was killed
Details 
Reviewed-on: #21
 2025-03-23 10:31:14 +01:00
Renovate Bot
1ed389c18b Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin to v3.11.0.3922
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 08:25:02 +00:00
Renovate Bot
4320c9698a Update dependency org.junit.jupiter:junit-jupiter-api to v5.12.1
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 08:25:00 +00:00
Renovate Bot
3a8044dda1 Update dependency org.jsoup:jsoup to v1.19.1
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 07:25:07 +00:00
Renovate Bot
96ca58de12 Update dependency com.google.code.gson:gson to v2.12.1
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 05:24:54 +00:00
Renovate Bot
5ed444ab92 Update dependency org.slf4j:slf4j-simple to v2.0.17
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 05:24:51 +00:00
Renovate Bot
19a5583594 Update dependency org.slf4j:slf4j-api to v2.0.17
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 04:27:18 +00:00
Renovate Bot
a39bcf68cb Update dependency com.google.protobuf:protobuf-java to v4.30.1
Some checks failed
continuous-integration/drone/pr Build is failing
Details
2025-03-23 04:27:16 +00:00
4 changed files with 33 additions and 115 deletions
Expand all files Collapse all files

82
.drone.yml
View File

@@ -1,77 +1,13 @@
kind: pipeline
type: docker
name: build
platform:
os: linux
kind: template
load: java-build-deploy.yaml
data:
arch: arm64
trigger:
branch:
os: linux
build_branches:
- main
event:
build_events:
- push
- pull_request
steps:
# test if it compiles correctly
- name: build
image: maven:3-eclipse-temurin-21
commands:
- mvn verify --no-transfer-progress -DskipTests=true -Dmaven.javadoc.skip=true -B -V
# run unit tests
- name: test
image: maven:3-eclipse-temurin-21
commands:
- mvn test --no-transfer-progress -B -V
# check maven dependencies
- name: dependency-check
image: maven:3-eclipse-temurin-21
commands:
- mvn dependency-check:check --no-transfer-progress -B -V -DnvdApiKey=$NVD_API_KEY
environment:
NVD_API_KEY:
from_secret: nvd_api_key
# run code analysis
- name: code-analysis
image: maven:3-eclipse-temurin-21
commands:
- mvn sonar:sonar --no-transfer-progress -Dsonar.projectKey=$SONAR_PROJECT_KEY -Dsonar.host.url=$SONAR_INSTANCE_URL -Dsonar.token=$SONAR_LOGIN_KEY -B -V
environment:
SONAR_PROJECT_KEY:
from_secret: sonar_project_key
SONAR_INSTANCE_URL:
from_secret: sonar_instance_url
SONAR_LOGIN_KEY:
from_secret: sonar_login_key
---
kind: pipeline
type: docker
name: deploy
platform:
os: linux
arch: arm64
trigger:
event:
- promote
target:
- production
steps:
# skip all previous steps because they were already ran in the "build" phase; we don't need to re-analyze the code.
# upload to maven repository
- name: maven-deploy
image: maven:3-eclipse-temurin-21
commands:
- mvn deploy --no-transfer-progress -DskipTests=true -Dmaven.javadoc.skip=true -B -V -gs settings.xml -Dmaven.repo.username=$MAVEN_REPO_USERNAME -Dmaven.repo.password=$MAVEN_REPO_PASSWORD
environment:
MAVEN_REPO_USERNAME:
from_secret: maven_repo_username
MAVEN_REPO_PASSWORD:
from_secret: maven_repo_password
sonar_project_key: HidekoBot
deploy_targets:
- production

10
README.MD
View File

@@ -1,9 +1,9 @@
# HidekoBot
[![Reliability Rating](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot_AYWyYHsvX-1Ma0D4pJ59&metric=reliability_rating&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot_AYWyYHsvX-1Ma0D4pJ59)
[![Maintainability Rating](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot_AYWyYHsvX-1Ma0D4pJ59&metric=sqale_rating&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot_AYWyYHsvX-1Ma0D4pJ59)
[![Security Rating](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot_AYWyYHsvX-1Ma0D4pJ59&metric=security_rating&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot_AYWyYHsvX-1Ma0D4pJ59)
[![Build Status](https://drone.beatrice.wtf/api/badges/bea/HidekoBot/status.svg)](https://drone.beatrice.wtf/bea/HidekoBot)
[![Lines of Code](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot_AYWyYHsvX-1Ma0D4pJ59&metric=ncloc&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot_AYWyYHsvX-1Ma0D4pJ59)
[![Reliability Rating](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot&metric=reliability_rating&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot)
[![Maintainability Rating](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot&metric=sqale_rating&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot)
[![Security Rating](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot&metric=security_rating&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot)
[![Build Status](https://drone.prod.panic.haus/api/badges/bea/HidekoBot/status.svg)](https://drone.prod.panic.haus/bea/HidekoBot)
[![Lines of Code](https://sonar.beatrice.wtf/api/project_badges/measure?project=HidekoBot&metric=ncloc&token=0a63c149148555d6d2ee40665af1afae8f67cc3f)](https://sonar.beatrice.wtf/dashboard?id=HidekoBot)
Hideko is a general-purpose Discord bot.

29
pom.xml
View File

@@ -22,18 +22,18 @@
<dependency>
<groupId>net.dv8tion</groupId>
<artifactId>JDA</artifactId>
<version>5.3.0</version>
<version>5.6.1</version>
</dependency>
<!-- JDA depends on SLF4J for logging -->
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
<version>2.0.6</version>
<version>2.0.17</version>
</dependency>
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-simple</artifactId>
<version>2.0.6</version>
<version>2.0.17</version>
</dependency>
<!-- Dependency used for SQLite database connections-->
@@ -47,26 +47,26 @@
<dependency>
<groupId>org.yaml</groupId>
<artifactId>snakeyaml</artifactId>
<version>2.0</version>
<version>2.4</version>
</dependency>
<!-- JSoup is used to parse HTML into JSON objects for better handling in Java -->
<dependency>
<groupId>org.jsoup</groupId>
<artifactId>jsoup</artifactId>
<version>1.15.3</version>
<version>1.19.1</version>
</dependency>
<!-- Various String manipulation utils -->
<dependency>
<groupId>org.apache.commons</groupId>
<artifactId>commons-text</artifactId>
<version>1.10.0</version>
<version>1.13.1</version>
</dependency>
<!-- JSON dependency used for better parsing of JSON files -->
<dependency>
<groupId>org.json</groupId>
<artifactId>json</artifactId>
<version>20231013</version>
<version>20250517</version>
</dependency>
<!-- Start Random.org dependencies -->
@@ -78,12 +78,12 @@
<dependency>
<groupId>com.google.code.gson</groupId>
<artifactId>gson</artifactId>
<version>2.10.1</version>
<version>2.13.1</version>
</dependency>
<dependency>
<groupId>commons-codec</groupId>
<artifactId>commons-codec</artifactId>
<version>1.15</version>
<version>1.18.0</version>
</dependency>
<!-- End Random.org dependencies -->
@@ -91,7 +91,7 @@
<dependency>
<groupId>org.junit.jupiter</groupId>
<artifactId>junit-jupiter-api</artifactId>
<version>5.9.2</version>
<version>5.13.0</version>
<scope>test</scope>
</dependency>
</dependencies>
@@ -102,7 +102,7 @@
<dependency>
<groupId>com.google.protobuf</groupId>
<artifactId>protobuf-java</artifactId>
<version>4.30.0</version>
<version>4.31.1</version>
</dependency>
</dependencies>
</dependencyManagement>
@@ -143,23 +143,24 @@
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-javadoc-plugin</artifactId>
<version>3.4.1</version>
<version>3.11.2</version>
</plugin>
<plugin>
<groupId>org.sonarsource.scanner.maven</groupId>
<artifactId>sonar-maven-plugin</artifactId>
<version>3.9.1.2184</version>
<version>5.1.0.4751</version>
</plugin>
<plugin>
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
<version>12.1.0</version>
<version>12.1.1</version>
<configuration>
<failBuildOnCVSS>8</failBuildOnCVSS>
<!--suppress UnresolvedMavenProperty -->
<nvdApiKey>${nvdApiKey}</nvdApiKey>
<knownExploitedUrl>https://raw.githubusercontent.com/EugenMayer/cisa-known-exploited-mirror/main/known_exploited_vulnerabilities.json</knownExploitedUrl>
<formats>
<format>html</format>
<format>json</format>

27
suppressions.xml
View File

@@ -1,31 +1,12 @@
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<!--
<suppress>
<notes><![CDATA[
file name: snakeyaml-1.33.jar
]]></notes>
file name: snakeyaml-1.33.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.yaml/snakeyaml@.*$</packageUrl>
<cve>CVE-2021-4235</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: snakeyaml-1.33.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.yaml/snakeyaml@.*$</packageUrl>
<cve>CVE-2022-3064</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: snakeyaml-1.33.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.yaml/snakeyaml@.*$</packageUrl>
<vulnerabilityName>CVE-2022-1471</vulnerabilityName>
</suppress>
<suppress>
<notes><![CDATA[
file name: json-20220924.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.json/json@.*$</packageUrl>
<vulnerabilityName>CVE-2022-45688</vulnerabilityName>
</suppress>
-->
</suppressions>