dependency-check 1.2.8 released!

[Jeremy Long]

All,

The OWASP dependency-check team is pleased to announce the release of version 1.2.8! As with the release of 1.2.7, most of the changes affected the dependency-check-maven plugin. However, some changes were made to the other modules as well. Please visit the documentation site for information on obtaining the new version (CLI, Maven Plugin, Ant Task, Jenkins Plugin). 

Summary of changes:

• The Maven Plugin was completely re-worked. 
  
• The aggregate configuration parameter was deprecated and was replaced by an aggregate goal to resolve issue #173. During this process a few previously unidentified bugs were identified and resolved.
• - Fixed a bug in the initialization of verbose logging that would prevent logging in some cases.
• Added configuration parameters to disable the Central Analyzer in the CLI, Ant, and Maven plugin.
  
• Note, if you disable the Central Analyzer you likely also want to disable the Nexus Analyzer.
• Improved Logging and error messages as it relates to downloading the NVD CVE data feed.
  

Best Regards!

The OWASP dependency-check team!