upgrade dependency-check plugin and configure

littleaj · littleaj · commit 9b506e556537 · 2019-08-02T11:00:57.000-07:00
diff --git a/build.gradle b/build.gradle
@@ -29,8 +29,8 @@ buildscript {
         jcenter()
     }
     dependencies {
-        classpath 'com.google.protobuf:protobuf-gradle-plugin:0.8.6'
-        classpath 'org.owasp:dependency-check-gradle:4.0.2'
+        classpath 'com.google.protobuf:protobuf-gradle-plugin:0.8.10'
+        classpath 'org.owasp:dependency-check-gradle:5.2.0'
         classpath 'com.github.jengelman.gradle.plugins:shadow:5.0.0'
     }
 }
@@ -87,5 +87,9 @@ allprojects {
     }
 }
 
+wrapper {
+    distributionType = Wrapper.DistributionType.ALL
+}
+
 // endregion Root project script
 
diff --git a/gradle/common-java.gradle b/gradle/common-java.gradle
@@ -49,6 +49,18 @@ tasks.withType(Checkstyle) {
     }
 }
 
+dependencyCheck {
+    def supFile = "${project.projectDir}/dependency-check-suppressions.xml"
+    if (file(supFile).exists() && !Project.hasProperty('dependencyCheck.suppressions.skip')) {
+        suppressionFiles += supFile
+    }
+    outputDirectory = "${project.buildDir}/reports/dependency-check"
+    formats = ['HTML', 'JUNIT']
+    skipConfigurations = ['mavenDeployer']
+    cveValidForHours = 1
+    failBuildOnCVSS = 0
+}
+
 jacoco {
     toolVersion = "0.8.2"
 }

Original file line number	Diff line number	Diff line change
`@@ -29,8 +29,8 @@ buildscript {`
`29`	`29`	`jcenter()`
`30`	`30`	`}`
`31`	`31`	`dependencies {`
`32`		`- classpath 'com.google.protobuf:protobuf-gradle-plugin:0.8.6'`
`33`		`- classpath 'org.owasp:dependency-check-gradle:4.0.2'`
	`32`	`+ classpath 'com.google.protobuf:protobuf-gradle-plugin:0.8.10'`
	`33`	`+ classpath 'org.owasp:dependency-check-gradle:5.2.0'`
`34`	`34`	`classpath 'com.github.jengelman.gradle.plugins:shadow:5.0.0'`
`35`	`35`	`}`
`36`	`36`	`}`
`@@ -87,5 +87,9 @@ allprojects {`
`87`	`87`	`}`
`88`	`88`	`}`
`89`	`89`
	`90`	`+wrapper {`
	`91`	`+ distributionType = Wrapper.DistributionType.ALL`
	`92`	`+}`
	`93`	`+`
`90`	`94`	`// endregion Root project script`
`91`	`95`
Original file line number	Diff line number	Diff line change
`@@ -49,6 +49,18 @@ tasks.withType(Checkstyle) {`
`49`	`49`	`}`
`50`	`50`	`}`
`51`	`51`
	`52`	`+dependencyCheck {`
	`53`	`+ def supFile = "${project.projectDir}/dependency-check-suppressions.xml"`
	`54`	`+ if (file(supFile).exists() && !Project.hasProperty('dependencyCheck.suppressions.skip')) {`
	`55`	`+ suppressionFiles += supFile`
	`56`	`+ }`
	`57`	`+ outputDirectory = "${project.buildDir}/reports/dependency-check"`
	`58`	`+ formats = ['HTML', 'JUNIT']`
	`59`	`+ skipConfigurations = ['mavenDeployer']`
	`60`	`+ cveValidForHours = 1`
	`61`	`+ failBuildOnCVSS = 0`
	`62`	`+}`
	`63`	`+`
`52`	`64`	`jacoco {`
`53`	`65`	`toolVersion = "0.8.2"`
`54`	`66`	`}`