yetus-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Yetus QA (JIRA)" <>
Subject [jira] [Commented] (YETUS-441) Add a precommit check for known CVEs from dependencies
Date Tue, 24 Jul 2018 18:11:00 GMT


Yetus QA commented on YETUS-441:

(!) A patch to the testing environment has been detected. 
Re-executing against the patched versions to perform further tests. 
The console is at in case
of problems.

> Add a precommit check for known CVEs from dependencies
> ------------------------------------------------------
>                 Key: YETUS-441
>                 URL:
>             Project: Yetus
>          Issue Type: New Feature
>          Components: Test Patch
>            Reporter: Sean Busbey
>            Assignee: Sean Busbey
>            Priority: Major
>         Attachments: YETUS-441.0.patch, YETUS-441.004.patch, YETUS-441.1.patch, YETUS-441.2.patch,
YETUS-441.3.patch, dependency-check-suppression.xml
> Add in a precommit test that makes use of [The OWASP Dependency Check|]
to look for known bad dependencies.
> there's a maven plugin, ant task, and command line tool. So we should be able to build
similar support to what we have for RAT.

This message was sent by Atlassian JIRA

View raw message