Open elafontaine opened 2 days ago
Same error for us. Since the last time this worked, we haven't made any changes to my knowledge. The error appeared this morning
I think this may be an issue on central itself, but I wouldn't be putting my hand in the fire for that. I just did a basic GET on the URI https://search.maven.org/solrsearch/select and it took a good 15 seconds to get an actual response (400) after the TLS was established... This may explain why my jobs are hanging over an hour.
I think I hit the bulleye; https://status.maven.org/
That's right. Already spotted the status-mail flood in my mailbox. I subscribed to their status updates at the time of an earlier longer-during instability of their infrastructure (around the year-turn 2022/2023) and traffic in the last few days was extraordinary high (as also is reflected on the status-page where you see it turn reddish for the recent days and mostly green for the distant past).
Describe the bug Since the last update, our jobs have been failing to execute the "Central Analyzer" ;
Version of dependency-check used latest
Log file
To Reproduce Steps to reproduce the behavior:
target
/usr/share/dependency-check/bin/dependency-check.sh --failOnCVSS 5 --noupdate --out "target" --scan 'target/**/*.jar' ${SUPPRESSION_FILE_PATH:+--suppression "$SUPPRESSION_FILE_PATH"}
Expected behavior No error OR errors because of vulnerabilities found in the jars.
Additional context This is ran in a pipeline with internet access, so the error makes no sense to me... I will try to confirm the direct connectivity to the default URI ;