OODT-957 add maven dependency check plugin for potential CVE detection
Project: http://git-wip-us.apache.org/repos/asf/oodt/repo Commit: http://git-wip-us.apache.org/repos/asf/oodt/commit/ed7036f1 Tree: http://git-wip-us.apache.org/repos/asf/oodt/tree/ed7036f1 Diff: http://git-wip-us.apache.org/repos/asf/oodt/diff/ed7036f1 Branch: refs/heads/development Commit: ed7036f1ac30ea04fb02cffab581f6b1f84698eb Parents: d07f91a Author: Tom Barber <[email protected]> Authored: Tue Sep 12 09:02:12 2017 +0100 Committer: Tom Barber <[email protected]> Committed: Tue Sep 12 09:02:12 2017 +0100 ---------------------------------------------------------------------- core/pom.xml | 32 +++++++++++++++++++++----------- 1 file changed, 21 insertions(+), 11 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/oodt/blob/ed7036f1/core/pom.xml ---------------------------------------------------------------------- diff --git a/core/pom.xml b/core/pom.xml index c01ef9f..8ad58c7 100644 --- a/core/pom.xml +++ b/core/pom.xml @@ -569,17 +569,6 @@ mm </configuration> </plugin> <plugin> - <groupId>org.owasp</groupId> - <artifactId>dependency-check-maven</artifactId> - <executions> - <execution> - <goals> - <goal>check</goal> - </goals> - </execution> - </executions> - </plugin> - <plugin> <artifactId>maven-jar-plugin</artifactId> <configuration> <archive> @@ -994,5 +983,26 @@ mm </plugins> </build> </profile> + <profile> + <id>cve-check</id> + <activation> + <activeByDefault>false</activeByDefault> + </activation> + <build> + <plugins> + <plugin> + <groupId>org.owasp</groupId> + <artifactId>dependency-check-maven</artifactId> + <executions> + <execution> + <goals> + <goal>check</goal> + </goals> + </execution> + </executions> + </plugin> + </plugins> + </build> + </profile> </profiles> </project>
