zziga
commented
5 years ago @ruud-de-jong, you might want to check out https://maven.apache.org/enforcer/enforcer-rules/bannedDependencies.html
Open ruud-de-jong opened 5 years ago
zziga
commented
5 years ago @ruud-de-jong, you might want to check out https://maven.apache.org/enforcer/enforcer-rules/bannedDependencies.html
ruud-de-jong
commented
5 years ago @ruud-de-jong, you might want to check out https://maven.apache.org/enforcer/enforcer-rules/bannedDependencies.html
@zziga Thanks. I missed option. It does exactly what it should.
In our company, we like to control everything going to production. Therefore, dependency management is very important. Some lazy developers tend to use the Spring starter packages, like org.springframework.boot:spring-boot-starter-actuator These starter packages usually tend to pull in other unwanted packages. It would be nice to have a rule which can block Springframework starter packages in general.
When not parameterized, it could scan for "groupId".startsWith "org.springframework" and "artifactId".contains "-starter-"