ebresie
commented
1 year ago There may be some overlap with https://github.com/ebresie/python4nb/issues/16 which is Git Action based while the above is based on addition of maven plugins to assess things.
Closed ebresie closed 1 year ago
ebresie
commented
1 year ago There may be some overlap with https://github.com/ebresie/python4nb/issues/16 which is Git Action based while the above is based on addition of maven plugins to assess things.
ebresie
commented
1 year ago As part of this, additional maven profiles have been added which include:
There are also a few other commented profiles to demonstrate possible used of os, jdk, properties, and/or activation attributes should these be used at a later time.
To evaluate this, use the security-test profile which will run security analysis. There may be some overlap with existing GitHub Security and dependabot analysis.
ebresie
commented
1 year ago Due to above commit, will close this one for now. In future will need to run it prior to next release (so a "release checklist" item)
Need to update related dependencies to reduce security vulnerabilities.
This will be based on some of the findings found using dependency-check-maven and related checks.