dependency-check 1.0.1

[Jeremy Long]

Last week at Black Hat a new version of dependency-check was published - 1.0.1. This has many new features and bug fixes. The command line utility has been repackaged and includes a .bat and .sh script file to aid in execution; the next major release will likely have an installer for the CLI. The CLI package can be downloaded here: http://dl.bintray.com/jeremy-long/owasp/dependency-check-1.0.0-release.zip

In addition to the command line interface a Maven Plugin and Ant Task have been released. There is one issue with the Plugin and Task - the initial download of data can take 15-20 minutes. While subsequent updates (if run within 7 days) will only take a few seconds; however, the initial download may turn developers off. However, in the near future a fix for this should be in place and the download of data should not take as long. 

The Ant task can be downloaded from bintray here: http://dl.bintray.com/jeremy-long/owasp/dependency-check-ant-1.0.0.jar 

The Maven Plugin is availabe via central here: http://search.maven.org/#artifactdetails%7Corg.owasp%7Cdependency-check-maven%7C1.0.1%7Cmaven-plugin

Most importantly - a Jenkins plugin has been released thanks to Steve Springett. The plugin has been published and should be available from the Jenkins console for download.

Several other enhancements have been made including an improved identification algorithm.

Lastly, new documentation has been added here: http://jeremylong.github.io/DependencyCheck/

Please let me know if you have any problems or questions.

--Jeremy