Hello Everyone, In reference to https://issues.apache.org/jira/browse/OFBIZ-7930 Jacques started an initiative to introduce OWASP tool to OFBiz. I helped with introducing its plugin for Gradle and now I have a patch ready that is not intrusive (does not download plugin dependencies unless you are going to use it).
The purpose of this plugin is to produce CVE security report by examining the jar dependencies in OFBiz. I will wait for any feedback for a few days before committing work Regards Taher Alkhateeb
