chore(deps): update dependency org.owasp:dependency-check-maven to v7.4.4
This MR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| org.owasp:dependency-check-maven |
7.3.2 -> 7.4.4
|
 |
|
|
|
Release Notes
jeremylong/DependencyCheck
v7.4.4
Fixed
- Resolved issue processing NVD CVE data due to column width (#5229)
See the full listing of changes.
v7.4.3
Fixed
See the full listing of changes.
v7.4.2
Fixed
- Fixes maven 3.1 compatibility issue (#5152)
- Fixed issue with invalid
node_modulepaths in some scans (#5135) - Fixed missing option to disable the Poetry Analyzer in the CLI (#5160)
- Fixed missing option to configure the OSS Index URL in the CLI (#5180)
- Fixed NPE when analyzing version ranges in NPM (#5158)
- Fixed issue with non-proxy host in the gradle plugin (https://github.com/dependency-check/dependency-check-gradle/pull/298)
- Resolved several FP
See the full listing of changes.
v7.4.1
Fixed
- Fixed bug when setting the proxy port in gradle (#5123)
- Fixed issue with invalid
node_modulepaths in some scans (#5127) - Resolved several FP
See the full listing of changes.
v7.4.0
Added
- Add support for npm package lock v2 and v3 (#5078)
- Added experimental support for Python Poetry (#5025)
- Added a vanilla HTML report for use in Jenkins (#5053)
Changed
- Renamed
RELEASE_NOTES.mdtoCHANGELOG.mdto be more conventional - Optimized checksum calculation to improve performance (#5112)
- Added support for scanning .NET assemblies when only the dotnet runtime is installed (#5087)
- Bumped several dependencies
Fixed
- Fixed bug when setting the proxy port (#5076)
- Resolved several FP and FN
See the full listing of changes.
Configuration
-
If you want to rebase/retry this MR, click this checkbox.
This MR has been generated by Renovate Bot.
Edited by Renovate Tac