Releases: jenkinsci/dependency-check-plugin
Releases · jenkinsci/dependency-check-plugin
5.6.3
New Features
- JENKINS-76416 improve table look using datatables.net plugin by @NicolaIsotta in #214
Mantainance
- Bump com.puppycrawl.tools:checkstyle from 12.1.1 to 12.3.1 by @dependabot[bot] in #204
- Bump net.javacrumbs.json-unit:json-unit-assertj from 5.0.0 to 5.1.0 by @dependabot[bot] in #202
- Explicitly declare dependencies by @MarkEWaite in #205
- Remove unused release drafter configuration by @MarkEWaite in #213
- Bump org.assertj:assertj-core from 3.27.6 to 3.27.7 by @dependabot[bot] in #208
- Bump net.javacrumbs.json-unit:json-unit-assertj from 5.1.0 to 5.1.1 by @dependabot[bot] in #211
- Bump org.jenkins-ci.plugins:plugin from 5.28 to 6.2138.v03274d462c13 by @dependabot[bot] in #209
Full Changelog: dependency-check-jenkins-plugin-5.6.2...dependency-check-jenkins-plugin-5.6.3
Contributors
MarkEWaite, NicolaIsotta, and dependabot
Assets 2
5.6.2
Mantainance
- Use CODEOWNERS instead of dependabot reviewers by @shenxianpeng in #182
- Bump net.javacrumbs.json-unit:json-unit-assertj from 4.1.0 to 4.1.1 by @dependabot[bot] in #183
- Bump org.jenkins-ci.plugins:plugin from 5.9 to 5.17 by @dependabot[bot] in #184
- Bump com.puppycrawl.tools:checkstyle from 10.23.0 to 10.25.0 by @dependabot[bot] in #186
- Restore incrementals build by @nfalco79 in #187
- Bump com.puppycrawl.tools:checkstyle from 10.25.0 to 12.1.1 by @dependabot[bot] in #199
- Bump io.jenkins.tools.bom:bom-2.479.x from 4862.vc32a_71c3e731 to 5054.v620b_5d2b_d5e6 by @dependabot[bot] in #191
- Bump net.javacrumbs.json-unit:json-unit-assertj from 4.1.1 to 5.0.0 by @dependabot[bot] in #197
- Bump io.jenkins.tools.incrementals:git-changelist-maven-extension from 1.8 to 1.13 by @dependabot[bot] in #196
- Bump org.jenkins-ci.plugins:plugin from 5.17 to 5.28 by @dependabot[bot] in #198
- Ban JUnit 4 imports by @strangelookingnerd in #200
- Test with Java 25 by @MarkEWaite in #201
- Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 by @dependabot[bot] in #194
New Contributors
- @shenxianpeng made their first contribution in #182
Full Changelog: dependency-check-jenkins-plugin-5.6.1...dependency-check-jenkins-plugin-5.6.2
Contributors
MarkEWaite, shenxianpeng, and 3 other contributors
Assets 2
5.6.1
Bug fix
- JENKINS-75094 Errors occur in NVD API requests when a proxy is present by @nfalco79 in #177
- Make sure to delete the old tools folder when the CLI version is changed which caused ClassNotFoundException or MethodNotFoundException errors at runtime by @nfalco79
New Feature
- Add a new debug option to BuildStep to show the full CLI command executed in the build console, which can be useful in diagnosing a solution when problems arise
Mantainance
- Bump org.assertj:assertj-core from 3.26.3 to 3.27.0 by @dependabot in #165
- Bump io.jenkins.tools.bom:bom-2.462.x from 3761.vd922730f0fd2 to 3850.vb_c5319efa_e29 by @dependabot in #164
- Bump com.puppycrawl.tools:checkstyle from 10.20.2 to 10.21.1 by @dependabot in #163
- Require Jenkins 2.479.1 and Jakarta EE 9 by @strangelookingnerd in #170
- Migrate tests to JUnit5 by @strangelookingnerd in #176
- Bump org.assertj:assertj-core from 3.27.0 to 3.27.3 by @dependabot in #167
- Bump org.jenkins-ci.plugins:plugin from 5.7 to 5.9 by @dependabot in #174
- Bump com.puppycrawl.tools:checkstyle from 10.21.1 to 10.22.0 by @dependabot in #175
- Bump io.jenkins.tools.bom:bom-2.479.x from 4051.v78dce3ce8b_d6 to 4545.v56392b_7ca_7b_a_ by @dependabot in #173
Full Changelog: dependency-check-jenkins-plugin-5.6.0...dependency-check-jenkins-plugin-5.6.1
Contributors
nfalco79, dependabot, and strangelookingnerd
Assets 2
5.6.0
New Features
Bug Fixes
- JENKINS-74934: Display project references in OWASP dependency check table by @mbrannstrom in #156
- JENKINS-74072 Extract inline JavaScript from
DependencyCheck/ResultAction/index.jellyby @yaroslavafenkin in #155
Mantainance
- Remove usages of Commons Compress by @basil in #131
- Bump com.puppycrawl.tools:checkstyle from 10.12.7 to 10.16.0 by @dependabot in #130
- Bump io.jenkins.tools.incrementals:git-changelist-maven-extension from 1.7 to 1.8 by @dependabot in #129
- Bump org.jenkins-ci.plugins:plugin from 4.76 to 4.81 by @dependabot in #128
- Bump net.javacrumbs.json-unit:json-unit-assertj from 2.38.0 to 3.2.7 by @dependabot in #124
- Enable Jenkins Security Scan by @strangelookingnerd in #133
- Bump com.puppycrawl.tools:checkstyle from 10.16.0 to 10.17.0 by @dependabot in #136
- Bump net.javacrumbs.json-unit:json-unit-assertj from 3.2.7 to 3.3.0 by @dependabot in #137
- Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0 by @dependabot in #135
- Bump org.assertj:assertj-core from 3.24.2 to 3.26.0 by @dependabot in #138
- Update Jenkins Security Scan action by @strangelookingnerd in #143
- Bump org.assertj:assertj-core from 3.26.0 to 3.26.3 by @dependabot in #139
- Bump io.jenkins.tools.bom:bom-2.440.x from 3234.v5ca_5154341ef to 3413.v0d896b_76a_30d by @dependabot in #148
- Bump org.jenkins-ci.plugins:plugin from 4.86 to 4.88 by @dependabot in #150
- Bump com.puppycrawl.tools:checkstyle from 10.17.0 to 10.18.2 by @dependabot in #149
- Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.4.0 to 3.5.0 by @dependabot in #145
- Bump net.javacrumbs.json-unit:json-unit-assertj from 3.3.0 to 3.4.1 by @dependabot in #141
- Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.5.0 to 3.6.0 by @dependabot in #152
- Bump com.puppycrawl.tools:checkstyle from 10.18.2 to 10.20.0 by @dependabot in #154
- Bump io.jenkins.tools.bom:bom-2.462.x from 3559.vb_5b_81183b_d23 to 3613.v584fca_12cf5c by @dependabot in #151
- Bump com.puppycrawl.tools:checkstyle from 10.20.0 to 10.20.2 by @dependabot in #161
- Bump net.javacrumbs.json-unit:json-unit-assertj from 3.4.1 to 4.1.0 by @dependabot in #160
- Bump io.jenkins.tools.bom:bom-2.462.x from 3613.v584fca_12cf5c to 3761.vd922730f0fd2 by @dependabot in #159
New Contributors
- @basil made their first contribution in #131
- @strangelookingnerd made their first contribution in #133
- @yaroslavafenkin made their first contribution in #155
- @mbrannstrom made their first contribution in #156
Full Changelog: dependency-check-jenkins-plugin-5.5.0...dependency-check-jenkins-plugin-5.6.0
Contributors
basil, mbrannstrom, and 4 other contributors
Assets 2
5.5.0
Features
JENKINS-72557 Add ability to configure NVD API Key for OWSP dependency-check library (nfalco79)
5.4.3
Bugfix
JENKINS-71916 dependency-check CLI does not start (nfalco79)
JENKINS-71982 dependency-check fail the build due to invalid version (nfalco79)
5.4.2
Bugfix
JENKINS-71851 Dependency-check 5.4.1 fails with NPE when installer is of type folder (nfalco79)
5.4.1
Bugfix
JENKINS-71670 With multipe versions installed, job config doesn't use the configured version (malice00)
JENKINS-70900 Not all error Codes returned by ODC CLI are fatal errors thus should not result in a failed build (nfalco79)
5.4.0
Features
JENKINS-56898 Add support for configuration-as-code (nfalco79)
JENKINS-59238 Add links to the CVE information of the NVD site (nfalco79)
5.3.0
Bugfixes
Fix order of severity enumeration so that, in case two or more trends have the same issues counter than, the top most line is colored with the greater severity
Features
JENKINS-70429 Merge duplicate vulnerability records when multiple (mgorovoy)
(nfalco79)
Use common lang3 jenkins API plugin (StefanSpieker)