dependency-check 1.2.11 released!
130 views
Skip to first unread message
Jeremy Long
May 13, 2015, 8:14:20 AM5/13/15
to dependen...@googlegroups.com
All,
The OWASP dependency-check team is pleased to announce the release of version 1.2.10! Please visit the documentation site for information on obtaining the new version (CLI, Maven Plugin, Ant Task, Jenkins Plugin).
Summary of changes:
The OWASP dependency-check team is pleased to announce the release of version 1.2.10! Please visit the documentation site for information on obtaining the new version (CLI, Maven Plugin, Ant Task, Jenkins Plugin).
Summary of changes:
- Thanks to Dale Visor and the Institute for Defense Analyses a Python Analyzer was added!
- Added related work page to highlight other tools in this space.
- Added additional documentation regarding how dependency-check works with regards to needing access to the Internet for better library identification including advanced configurations that some organizations may choose to use.
- Updated the site documentation to include a gradle task definition that executes the dependency-check Ant task.
- A full fledged gradle plugin is planned for the next release (see pull request #231)
- The documentation was updated with regards to using a Nexus server; the URL provided needs to point to the REST Service end point.
- Fixed an issue with the Central Analyzer, in some cases the incorrect URL was being generated to download the pom.xml file.
- Added client side sorting to the summary table in the dependency-check report.
- Lots of internal code clean-up, false positive reduction, and minor bug fixes.
Again, thanks for the PRs and please open a github issue if you find any false positives or false negatives.
Best Regards,
The OWASP dependency-check team
Jeremy Long
May 13, 2015, 9:04:06 AM5/13/15
to dependen...@googlegroups.com, jerem...@gmail.com
Copy/paste issue - the first paragraph should have read 1.2.11 was released!
--Jeremy
--Jeremy
Reply all
Reply to author
Forward
0 new messages