Skip to content

GitLab

Explore

Sign in

Primary navigation

Project

BudgetMaster
- Activity
- Members
- Labels
- Issues
- Issue boards
- Milestones
- Wiki
- Releases
- Model registry
- Environments
- Incidents

Snippets Groups Projects

!271

Update dependency org.owasp:dependency-check-maven to v9

Review changes
Download
Patches
Plain diff

Closed Update dependency org.owasp:dependency-check-maven to v9

renovate/major-dependency-check-maven.version into v2_17_0

Overview 0
Commits 1
Pipelines 0
Changes 1

Closed Update dependency org.owasp:dependency-check-maven to v9

renovate-botrequested to merge

renovate/major-dependency-check-maven.version into v2_17_0 Nov 22, 2023

Overview 0
Commits 1
Pipelines 0
Changes 1

This MR contains the following updates:

Package	Type	Update	Change
org.owasp:dependency-check-maven (source)	build	major	`8.4.2` -> `9.0.2`

Release Notes

jeremylong/DependencyCheck (org.owasp:dependency-check-maven)

`v9.0.2`

fix: remove virtual match string on NVD API Request (#6177)
fix: correct meta data in report after switching the NVD API (#6154)
fix: retry HTTP connections to NVD on 502 and 504 errors (#6151)
fix: Gitlab report format needs severity capitalized (#6182)
fix: improve JDK update version parsing (#6163)
fix: mute JCS logging (again) (#6153)

See the full listing of changes.

`v9.0.1`

breaking changes: See the upgrade notice

fix: check java 8 update version; minimum JRE is 8 update 251 (#6118)
fix: add retry for failed NVD API requests (#6136)
docs: add default values to documentation for the NVD API Delay (#6135)
chore: Revert "build(deps): bump com.h2database:h2 from 2.1.214 to 2.2.224" (#6131)
- this is a breaking change for anyone that successfully created the H2 database with 9.0.0.
fix: mute jcs logging (#6130)
docs: update NVD notice (#6110)
fix: Use the correct key for NVD API-Key from Maven Settings serverId (#6109)

See the full listing of changes.

`v9.0.0`

breaking changes: See the upgrade notice

feat: Utilize NVD API (#5978)
feat: gitlab dependency scanner report format #5919 (#5920)
fix: Use ASCII apostrophe for console message (#6076)

See the full listing of changes.

`v8.4.3`

fix: bump jcs3 (#6047)
docs: Corrected docs on hostedSuppressions (#6035)

See the full listing of changes.

Configuration

Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

Ignore: Close this MR and you won't be reminded about this update again.

If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited Dec 1, 2023 by renovate-bot

Merge request reports

Activity

Filter activity

Approvals
Assignees & reviewers
Comments (from bots)
Comments (from users)
Commits & branches
Edits
Labels
Lock status
Mentions
Merge request status
Tracking

Please register or sign in to reply

0 Assignees

0 Reviewers

Request review from

Loading

Labels

0

None

0

None

Select labels

Manage project labels

Milestone

None

None

None

Time tracking

No estimate or time spent

0

0 Participants

Loading