At day job, we have a few Maven profiles that activate certain plug-ins. Some of these plug-ins might be helpful for this task too.
- Maven Enforcer + https://github.com/ImmobilienScout24/illegal-transitive-dependency-check * This checks that each module is only using its dependencies, and no transitive dependencies - OWASP dependency checker for security vulnerabilities - Maven Dependency Plugin * The Analyze task checks for dependencies that are not used Hope it helps Bruno ________________________________ From: Martin Desruisseaux <[email protected]> To: [email protected] Cc: Apache SIS <[email protected]> Sent: Friday, 13 July 2018 1:04 AM Subject: Dependencies required for a Web Service? Hello Hao On the Google Summer of Code work on Catalog Service on the Web (CSW), I see the following dependencies in the pom.xml file [1]. I wonder, are all those dependencies required for building (compiling) the application, or are some of those dependencies required only at runtime? I'm wondering if there is a possibility to reduce the amount of dependencies. * jersey-container-servlet * jersey-client * spring-context * spring-beans * jersey-media-moxy * neethi * woodstox-core * stax2-api * mina-core * cxf-rt-frontend-jaxrs * cxf-rt-frontend-simple * cxf-rt-ws-rm * cxf-rt-bindings-soap * cxf-rt-databinding-jaxb * cxf-rt-frontend-jaxws * cxf-rt-transports-udp * cxf-rt-ws-addr * cxf-rt-ws-policy * cxf-rt-wsdl * cxf-services-ws-discovery-service * cxf-services-ws-discovery-api * javax.ws.rs-api * jetty-security * jetty-http * jetty-io * jetty-server * jetty-util * slf4j-api * slf4j-jdk14 * spring-expression * xmlschema-core * xmlsec * jaxb-core * jaxb-xjc * jaxb-impl * jcl-over-slf4j * wsdl4j * wss4j-bindings * wss4j-policy * javax.servlet-api * cxf-rt-transports-http-jetty * httpclient * spring-core * sis-epsg * derby * postgresql Martin [1] https://github.com/haonguyen123/sis/blob/CSW/application/sis-webapp/pom.xml
