fix dependency-check

2025-03-09 11:04:44 +01:00
parent 23d46a28fb
commit 178b77e868
2 changed files with 24 additions and 1 deletions
--- a/.drone.yml
+++ b/.drone.yml
@@ -24,7 +24,7 @@ steps:

  # check maven dependencies
  - name: dependency-check
-    image: maven:3-eclipse-temurin-16
+    image: maven:3-eclipse-temurin-21
    commands:
      - mvn dependency-check:check --no-transfer-progress -B -V

--- a/pom.xml
+++ b/pom.xml
@@ -68,10 +68,33 @@
        </dependency>
    </dependencies>

+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.owasp</groupId>
+                <artifactId>dependency-check-maven</artifactId>
+                <version>12.1.0</version>
+                <configuration>
+                    <failBuildOnCVSS>8</failBuildOnCVSS>
+                    <formats>
+                        <format>html</format>
+                        <format>json</format>
+                    </formats>
+                    <suppressionFiles>
+                        <suppressionFile>./suppressions.xml</suppressionFile>
+                    </suppressionFiles>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+
    <properties>
        <maven.compiler.source>21</maven.compiler.source>
        <maven.compiler.target>21</maven.compiler.target>
        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <sonar.dependencyCheck.htmlReportPath>./target/dependency-check-report.html</sonar.dependencyCheck.htmlReportPath>
+        <sonar.dependencyCheck.jsonReportPath>./target/dependency-check-report.json</sonar.dependencyCheck.jsonReportPath>
+        <sonar.dependencyCheck.summarize>true</sonar.dependencyCheck.summarize>
    </properties>

 </project>