This is an automated email from the ASF dual-hosted git repository.
cwylie pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/druid.git
The following commit(s) were added to refs/heads/master by this push:
new ace4b80 update dependency-check cron job to purge cache before
checking (#11436)
ace4b80 is described below
commit ace4b807f4a2798728ecbf28c65420423dc2b482
Author: zachjsh <[email protected]>
AuthorDate: Tue Jul 13 04:43:31 2021 -0400
update dependency-check cron job to purge cache before checking (#11436)
The dependency-check cron job now purges any caches NVD before performing
dependency check. Without this, a high CVE vulernability was reported in this
job a few months after the nvd was updated for it.
---
.travis.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.travis.yml b/.travis.yml
index e76ecf5..4211f18 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -713,7 +713,7 @@ jobs:
stage: cron
install: skip
script: |-
- ${MVN} dependency-check:aggregate -pl '!integration-tests' || { echo "
+ ${MVN} dependency-check:purge dependency-check:aggregate -pl
'!integration-tests' || { echo "
The OWASP dependency check has found security vulnerabilities. Please
use a newer version
of the dependency that does not have vulnerabilities. To see a report
run
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
