search

redouane59 / twittered

Twitter API client for Java developers
Apache License 2.0
234 stars 64 forks source link

provided scope for sonar-plugin cause not needed in production package #452

Closed atpanos closed 9 months ago

atpanos commented 9 months ago

this dependency is old and has many vulnerable dependencies. with scope provided its not delivered in production. its only used in a maven command by the pipeline.

alternative: update to newest plugin: https://mvnrepository.com/artifact/org.sonarsource.scanner.maven/sonar-maven-plugin

redouane59 commented 9 months ago

Thanks !

sonarcloud[bot] commented 9 months ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability E 1 Vulnerability
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

warning The version of Java (11.0.20) you have used to run this analysis is deprecated and we will stop accepting it soon. Please update to at least Java 17. Read more here