Update dependency org.owasp:dependency-check-maven to v9
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| org.owasp:dependency-check-maven (source) | build | major |
8.4.2 -> 9.0.2
|
Release Notes
jeremylong/DependencyCheck (org.owasp:dependency-check-maven)
v9.0.2
- fix: remove virtual match string on NVD API Request (#6177)
- fix: correct meta data in report after switching the NVD API (#6154)
- fix: retry HTTP connections to NVD on 502 and 504 errors (#6151)
- fix: Gitlab report format needs severity capitalized (#6182)
- fix: improve JDK update version parsing (#6163)
- fix: mute JCS logging (again) (#6153)
See the full listing of changes.
v9.0.1
breaking changes: See the upgrade notice
- fix: check java 8 update version; minimum JRE is 8 update 251 (#6118)
- fix: add retry for failed NVD API requests (#6136)
- docs: add default values to documentation for the NVD API Delay (#6135)
- chore: Revert "build(deps): bump com.h2database:h2 from 2.1.214 to 2.2.224" (#6131)
- this is a breaking change for anyone that successfully created the H2 database with 9.0.0.
- fix: mute jcs logging (#6130)
- docs: update NVD notice (#6110)
- fix: Use the correct key for NVD API-Key from Maven Settings serverId (#6109)
See the full listing of changes.
v9.0.0
breaking changes: See the upgrade notice
- feat: Utilize NVD API (#5978)
- feat: gitlab dependency scanner report format #5919 (#5920)
- fix: Use ASCII apostrophe for console message (#6076)
See the full listing of changes.
v8.4.3
See the full listing of changes.
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by renovate-bot