org.openrewrite.xml.security.AddOwaspDateBoundSuppressions
Adds an expiration date to all OWASP suppressions in order to ensure that they are periodically reviewed. For use with the OWASP dependency-check tool. More details: https://jeremylong.github.io/DependencyCheck/general/suppression.html.
GitHub, Issue Tracker, Maven Central
- groupId: org.openrewrite
- artifactId: rewrite-xml
- version: 8.1.3
| Type | Name | Description |
|---|---|---|
String |
untilDate | Optional. Optional. The date to add to the suppression. Default will be 30 days from today. |
| Parameter | Value |
|---|---|
| untilDate | 2020-01-01 |
{% tabs %} {% tab title="suppressions.xml" %}
{% code title="suppressions.xml" %}
<?xml version="1.0" encoding="UTF-8" ?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<suppress>
<notes>
</notes>
</suppress>
</suppressions>{% endcode %}
{% code title="suppressions.xml" %}
<?xml version="1.0" encoding="UTF-8" ?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<suppress until="2020-01-01Z">
<notes>
</notes>
</suppress>
</suppressions>{% endcode %}
{% endtab %} {% tab title="Diff" %} {% code %}
--- suppressions.xml
+++ suppressions.xml
@@ -3,1 +3,1 @@
<?xml version="1.0" encoding="UTF-8" ?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
- <suppress>
+ <suppress until="2020-01-01Z">
<notes>{% endcode %} {% endtab %} {% endtabs %}
This recipe has no required configuration parameters and comes from a rewrite core library. It can be activated directly without adding any dependencies. {% tabs %} {% tab title="Gradle" %} {% code title="build.gradle" %}
plugins {
id("org.openrewrite.rewrite") version("6.1.4")
}
rewrite {
activeRecipe("org.openrewrite.xml.security.AddOwaspDateBoundSuppressions")
}
repositories {
mavenCentral()
}
{% endcode %} {% endtab %} {% tab title="Maven POM" %} {% code title="pom.xml" %}
<project>
<build>
<plugins>
<plugin>
<groupId>org.openrewrite.maven</groupId>
<artifactId>rewrite-maven-plugin</artifactId>
<version>5.2.4</version>
<configuration>
<activeRecipes>
<recipe>org.openrewrite.xml.security.AddOwaspDateBoundSuppressions</recipe>
</activeRecipes>
</configuration>
</plugin>
</plugins>
</build>
</project>
{% endcode %} {% endtab %}
{% tab title="Maven Command Line" %} You will need to have Maven installed on your machine before you can run the following command. {% code title="shell" %}
mvn -U org.openrewrite.maven:rewrite-maven-plugin:run \
-Drewrite.activeRecipes=org.openrewrite.xml.security.AddOwaspDateBoundSuppressions{% endcode %} {% endtab %} {% endtabs %}
The community edition of the Moderne platform enables you to easily run recipes across thousands of open-source repositories.
Please contact Moderne for more information about safely running the recipes on your own codebase in a private SaaS.