Bumps the versions of spotbugs and spotbugs gradle plugin to most recent.
Forces true result for the spotbugs invocations (in the sarif files this is a property in runs[].invocations called executionSuccessful). The reason is that there is a bug in find-sec-bugs which causes warnings/errors similar to
The following classes needed for analysis were missing:
call
invoke
and makes the invocation to fail (with exit code 3 and execution successful false).
Github is reading the value of executionSuccessful and reports it as
Forcing execution successful to true removes the error status and we can still browse all the reports in the security scanning view.
Bumps the versions of spotbugs and spotbugs gradle plugin to most recent.
Forces
trueresult for the spotbugs invocations (in the sarif files this is a property inruns[].invocationscalledexecutionSuccessful). The reason is that there is a bug in find-sec-bugs which causes warnings/errors similar toand makes the invocation to fail (with exit code 3 and execution successful
false). Github is reading the value ofexecutionSuccessfuland reports it asForcing execution successful to true removes the error status and we can still browse all the reports in the security scanning view.