dependency-check dependency-check-sonar-plugin issues

dependency-check / dependency-check-sonar-plugin

Integrates Dependency-Check reports into SonarQube

575 stars 132 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Bump autoprefixer from 10.4.13 to 10.4.17 in /sonar-dependency-check-plugin

#919 dependabot[bot] closed 4 months ago
1
Bump babel-loader from 8.3.0 to 9.1.3 in /sonar-dependency-check-plugin

#918 dependabot[bot] opened 4 months ago
0
Bump react-router from 6.2.1 to 6.22.1 in /sonar-dependency-check-plugin

#917 dependabot[bot] closed 4 months ago
1
Update sonarsource parent and adjust license year

#916 Reamer closed 4 months ago
1
Open report in a separate window

#915 Reamer closed 4 months ago
1
Bump webpack from 5.75.0 to 5.90.3 in /sonar-dependency-check-plugin

#914 dependabot[bot] closed 4 months ago
1
Bump webpack from 5.75.0 to 5.90.2 in /sonar-dependency-check-plugin

#913 dependabot[bot] closed 5 months ago
1
Bump junit.jupiter.version from 5.10.1 to 5.10.2 in /sonar-dependency-check-plugin

#912 dependabot[bot] closed 5 months ago
1
Add "DownloadOnlyWhenRequired" to packaging

#911 ganncamp closed 3 months ago
2
Bump release-drafter/release-drafter from 5 to 6

#910 dependabot[bot] closed 5 months ago
1
Bump webpack from 5.75.0 to 5.90.1 in /sonar-dependency-check-plugin

#909 dependabot[bot] closed 5 months ago
1
Issue with Documentation for 10.2+

#908 kantipenko closed 4 months ago
1
Bump @babel/core from 7.21.0 to 7.23.9 in /sonar-dependency-check-plugin

#907 dependabot[bot] closed 4 months ago
1
Bump webpack from 5.75.0 to 5.90.0 in /sonar-dependency-check-plugin

#906 dependabot[bot] closed 5 months ago
1
Bump org.mockito:mockito-core from 5.9.0 to 5.10.0 in /sonar-dependency-check-plugin

#905 dependabot[bot] closed 4 months ago
1
Html report break sonar UI

#904 ricson-dev closed 4 months ago
0
Drop JDK11 Support and add JDK21 Support

#903 Reamer closed 6 months ago
1
Bump org.mockito:mockito-core from 5.8.0 to 5.9.0 in /sonar-dependency-check-plugin

#902 dependabot[bot] closed 6 months ago
1
Bump follow-redirects from 1.15.2 to 1.15.4 in /sonar-dependency-check-plugin

#901 dependabot[bot] closed 4 months ago
1
Reinstate security hotspot rule definition

#900 NIGCH closed 6 months ago
6
Bump org.sonarsource.parent:parent from 65.0.218 to 71.0.0.1292 in /sonar-dependency-check-plugin

#899 dependabot[bot] closed 4 months ago
2
Bump @babel/core from 7.21.0 to 7.23.7 in /sonar-dependency-check-plugin

#898 dependabot[bot] closed 5 months ago
1
Bump jackson.version from 2.16.0 to 2.16.1 in /sonar-dependency-check-plugin

#897 dependabot[bot] closed 4 months ago
2
Migrate to slf4j

#896 Reamer closed 6 months ago
1
Use new severity levels (high, medium, low)

#895 NIGCH closed 7 months ago
7
Use new severity levels

#894 NIGCH closed 7 months ago
2
SonarQube (Enterprise EditionVersion 10.3 --build 82913) Content Security Policy blocking the plugin resource

#893 platformbeheer-otv opened 7 months ago
7
Bump com.github.spotbugs:spotbugs-annotations from 4.8.2 to 4.8.3 in /sonar-dependency-check-plugin

#892 dependabot[bot] closed 7 months ago
1
NVD Api key config missing

#891 czechdude closed 7 months ago
1
Bump de.jutzig:github-release-plugin from 1.5.1 to 1.6.0 in /sonar-dependency-check-plugin

#890 dependabot[bot] closed 6 months ago
1
Bump @babel/core from 7.21.0 to 7.23.6 in /sonar-dependency-check-plugin

#889 dependabot[bot] closed 6 months ago
1
Update dependency-check-maven 9.0.X breaks Sonarqube Vulnerabilities report / JSON-Analysis aborted

#888 srcimon closed 7 months ago
9
Bump actions/stale from 8 to 9

#887 dependabot[bot] closed 7 months ago
1
9.0.2 of dependency-check plugin throws JSON parsing error with field "CvssV2.confidentialityImpact"

#886 istosSchulz closed 7 months ago
4
Bump org.mockito:mockito-core from 5.7.0 to 5.8.0 in /sonar-dependency-check-plugin

#885 dependabot[bot] closed 7 months ago
2
Bump com.github.eirslett:frontend-maven-plugin from 1.13.4 to 1.15.0 in /sonar-dependency-check-plugin

#884 dependabot[bot] closed 6 months ago
2
Bump @babel/core from 7.21.0 to 7.23.5 in /sonar-dependency-check-plugin

#883 dependabot[bot] closed 7 months ago
1
Bump com.github.spotbugs:spotbugs-annotations from 4.8.1 to 4.8.2 in /sonar-dependency-check-plugin

#882 dependabot[bot] closed 7 months ago
1
Bump actions/setup-java from 3 to 4

#881 dependabot[bot] closed 7 months ago
1
Bump org.apache.commons:commons-lang3 from 3.13.0 to 3.14.0 in /sonar-dependency-check-plugin

#880 dependabot[bot] closed 7 months ago
2
Integrate OWASP plugin with SonarQube from Azure Pipeline

#879 hyousif-pkglobal closed 7 months ago
0
Bump de.jutzig:github-release-plugin from 1.4.0 to 1.5.1 in /sonar-dependency-check-plugin

#878 dependabot[bot] closed 8 months ago
1
Bump jackson.version from 2.15.3 to 2.16.0 in /sonar-dependency-check-plugin

#877 dependabot[bot] closed 8 months ago
1
assets section of each release doesnt include .sha256 file

#876 erickramer51115 opened 8 months ago
1
Bump @babel/core from 7.21.0 to 7.23.3 in /sonar-dependency-check-plugin

#875 dependabot[bot] closed 7 months ago
1
Bump com.github.spotbugs:spotbugs-annotations from 4.8.0 to 4.8.1 in /sonar-dependency-check-plugin

#874 dependabot[bot] closed 8 months ago
1
[Quality Gates] : Owasp Dependency check

#873 K44sper closed 8 months ago
1
Bump junit.jupiter.version from 5.10.0 to 5.10.1 in /sonar-dependency-check-plugin

#872 dependabot[bot] closed 8 months ago
1
Bump org.mockito:mockito-core from 5.6.0 to 5.7.0 in /sonar-dependency-check-plugin

#871 dependabot[bot] closed 8 months ago
1
Support for Sonar 10.2 Software Quality Severities

#870 Blir closed 4 months ago
7

Previous Next