[
https://issues.apache.org/jira/browse/NIFI-14208?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17922184#comment-17922184
]
ASF subversion and git services commented on NIFI-14208:
--------------------------------------------------------
Commit d84f0dabaf87b60abd01e8035864922606d092ab in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=d84f0dabaf ]
NIFI-14208 Removed Dependency Check Plugin
- Removed OWASP Dependency Check in favor of Grype scan in code-compliance
workflow
Signed-off-by: Pierre Villard <[email protected]>
This closes #9673.
> Remove OWASP Dependency Check Plugin
> ------------------------------------
>
> Key: NIFI-14208
> URL: https://issues.apache.org/jira/browse/NIFI-14208
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Tools and Build
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Minor
> Time Spent: 20m
> Remaining Estimate: 0h
>
> Following recent changes to include dependency scanning with Anchore Grype as
> part of the code-compliance workflow in GitHub Actions, the Maven profile for
> the OWASP Dependency Check Plugin should be removed.
> The associated suppressions configuration should also be removed so that any
> future suppression findings will be targeted to the Grype configuration.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
