Dependency-Check Core

org.owasp : dependency-check-core

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

Jan 12, 2022
9 usages

Add dependency in Maven / Gradle

<!-- https://jmaven.com/dependency/org.owasp/dependency-check-core --> 
<dependency>
    <groupId>org.owasp</groupId>
    <artifactId>dependency-check-core</artifactId>
    <version>6.5.3</version>
</dependency>

1. Add dependency to a Maven project

Maven: Add the org.owasp:dependency-check-core library to the dependencies element of your pom.xml file:

<dependencies>
<dependency>
  <groupId>org.owasp</groupId>
  <artifactId>dependency-check-core</artifactId>
  <version>6.5.3</version>
</dependency>
</dependencies>

To install org.owasp:dependency-check-core library use the following command:

mvn install

2. Add dependency to a Gradle project

Gradle Groovy DSL: Add the org.owasp:dependency-check-core library to the dependencies section of your build.gradle file:

dependencies {
implementation 'org.owasp:dependency-check-core:6.5.3'
}

Gradle Kotlin DSL: Add the org.owasp:dependency-check-core library to the dependencies section of your build.gradle.kts file:

dependencies {
implementation("org.owasp:dependency-check-core:6.5.3")
}

3. Add dependency to a SBT Scala project

Scala: Add the org.owasp:dependency-check-core library to your build.sbt file:

libraryDependencies += "org.owasp" % "dependency-check-core" % "6.5.3"

4. Add dependency to a Grape project

Grape: Add an annotation org.owasp:dependency-check-core library to your groovy script file:

@Grapes(
    @Grab('org.owasp:dependency-check-core:6.5.3')
)

Compile Dependencies (1)

Group / Artifact Usage
com.h2database » h2 4.9k

Provided Dependencies (0)

Group / Artifact Usage

Test Dependencies (24)

Recommended for You

Connect SDK is an open source framework that connects your mobile apps with multiple TV platforms. Because most TV platforms support a variety of protocols, Connect SDK integrates and abstracts the discovery and connectivity between all supported protocols.

10 stars

Functionality shared by the handler implementations.

9 usages
9 stars

SDK to communicate with the Ingenico ePayments platform using the Ingenico Connect Server API

1 usages
28 stars

Scio add-on for Google Cloud Platform

3 usages

More from Group

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

9 usages

dependency-check-utils is a collection of common utility classes used within dependency-check that might be useful in other projects.

7 usages

OWASP CSRFGuard is a library that implements a variant of the synchronizer token pattern to mitigate the risk of Cross-Site Request Forgery (CSRF) attacks.

4 usages

dependency-check-maven is a Maven Plugin that uses dependency-check-core to detect publicly disclosed vulnerabilities associated with the project's dependencies. The plugin will generate a report listing the dependency, any identified Common Platform Enumeration (CPE) identifiers, and the associated Common Vulnerability and Exposure (CVE) entries.

3 usages
© 2022 JMaven.com