sbt-dependency-check changelog

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:

All Versions

13

Latest Version

Avg Release Cycle

69 days

Latest Release

1041 days ago

Changelog History

Page 2

v0.2.10 Changes
January 04, 2019
🚀 Updated dependency-check-core to v4.0.2 (#66). See Release notes of dependency-check v4.0.0, v4.0.1 and v4.0.2 for details.

Noteworthy changes
- ⚡️ Guava updated to v27.0.1-jre to fix CVE-2018-10237
- 🆕 New settings for authenticated access to Nexus Repository: dependencyCheckNexusUser and dependencyCheckNexusPassword
v0.2.9 Changes
November 18, 2018
🚀 Updated dependency-check-core to v3.3.4, PR #60 by @Philippus. See release notes of v3.3.3 and v.3.3.4 for details.

💥 Breaking Changes
- NSP Analyzer was migrated to use NPM Audit Analyzer. The following settings were renamed:
  - dependencyCheckNSPAnalyzerEnabled changed to dependencyCheckNodeAuditAnalyzerEnabled
  - dependencyCheckNSPAnalyzerUrl changed to dependencyCheckNodeAuditAnalyzerUrl
Noteworthy Changes
- Several false negative fixes
- Several false positive fixes
- ⚡️ Updated the suppress buttons in the HTML report to generate the XML using the latest suppression schema
- ➕ Added documentation how to configure sbt-dependency-check to use as a global plugin #61
v0.2.8 Changes
August 11, 2018
🚀 Updated dependency-check-core to v3.3.1 (#48). See release notes for details.

Noteworthy changes
- 🆕 New experimental NuGet package.config analyzer settings

Awesome Scala is part of the LibHunt network. Terms. Privacy Policy.