Update dependency org.owasp:dependency-check-maven to v8.2.1
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| org.owasp:dependency-check-maven (source) | build | minor |
8.1.0 -> 8.2.1
|
Release Notes
jeremylong/DependencyCheck
v8.2.1
Fixed
- NullPointerException in MSBuildAnalyzer (#5589)
- SQL Syntax for Oracle (#5590)
- Use
https://URLs in report templates (#5582)
See the full listing of changes.
v8.2.0
Added
- Support msbuild Directory.build.props (#5475)
- better display of NPM audit references
- Add CVSS V3 results from NPM Audit results
Fixed
- Fix several issues on NPM Audit reporting (#5546)
- Case issue in SQL (#5557)
- Fix CWE(s) extraction for NPM Audit advisories
- Use the stable github_advisory_id instead of the now unstable id in NPM audit results
See the full listing of changes.
v8.1.2
Fixed
- Fix
NullPointerExceptionin the Jar Analyzer introduced in 8.1.1 (#5512)
See the full listing of changes.
v8.1.1
Fixed
- allow hosted suppressions file to be disabled (#5509)
- Several FPs not suitable for our automation (#5504)
- Fix incorrect defaults for nexus and central-analyzer in gradle plugin documentation (#5503)
- Erroneous error-log for deprecated CLI flag usage when using properyfile based disablement of Node Audit Analyzer (#5487)
- Prefer pom.properties G/A/V over pom.xml G/A/V to resolve GAV interpolation issues (#5473)
- Node package dependencies ending up as related dependency of the wrong version of the package (#5479)
- do not throw error if pyproject.toml is in node_modules (#5470)
See the full listing of changes.
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.