search

redouane59 / twittered

Twitter API client for Java developers
Apache License 2.0
239 stars 66 forks source link

provided scope for sonar-plugin cause not needed in production package #452

Closed atpanos closed 1 year ago

atpanos commented 1 year ago

this dependency is old and has many vulnerable dependencies. with scope provided its not delivered in production. its only used in a maven command by the pipeline.

alternative: update to newest plugin: https://mvnrepository.com/artifact/org.sonarsource.scanner.maven/sonar-maven-plugin

redouane59 commented 1 year ago

Thanks !

sonarcloud[bot] commented 1 year ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability E 1 Vulnerability
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

warning The version of Java (11.0.20) you have used to run this analysis is deprecated and we will stop accepting it soon. Please update to at least Java 17. Read more here