Skip to content

GH OWASP dependency check #590

GH OWASP dependency check

GH OWASP dependency check #590

Workflow file for this run

name: GH OWASP dependency check
on:
pull_request:
schedule:
- cron: "17 23 * * 0"
jobs:
build:
name: OWASP dependency check
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up JDK
uses: actions/setup-java@v4
with:
java-version: 11
distribution: 'zulu'
cache: 'maven'
- name: OWASP Dependency Check
run: mvn -DnvdApiKey=${{ secrets.NVD_API_KEY }} -DskipTests -U package org.owasp:dependency-check-maven:check -fae -B -Dorg.slf4j.simpleLogger.defaultLogLevel=WARN -DfailBuildOnCVSS=7
- name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: target/dependency-check-report.sarif
- name: Cleanup snapshots
run: |
find ~/.m2/repository -name "*SNAPSHOT*" -type d | xargs rm -rf {}