Releases: jenkinsci/dependency-check-plugin
5.6.0
New Features
Bug Fixes
- JENKINS-74934: Display project references in OWASP dependency check table by @mbrannstrom in #156
- JENKINS-74072 Extract inline JavaScript from
DependencyCheck/ResultAction/index.jellyby @yaroslavafenkin in #155
Mantainance
- Remove usages of Commons Compress by @basil in #131
- Bump com.puppycrawl.tools:checkstyle from 10.12.7 to 10.16.0 by @dependabot in #130
- Bump io.jenkins.tools.incrementals:git-changelist-maven-extension from 1.7 to 1.8 by @dependabot in #129
- Bump org.jenkins-ci.plugins:plugin from 4.76 to 4.81 by @dependabot in #128
- Bump net.javacrumbs.json-unit:json-unit-assertj from 2.38.0 to 3.2.7 by @dependabot in #124
- Enable Jenkins Security Scan by @strangelookingnerd in #133
- Bump com.puppycrawl.tools:checkstyle from 10.16.0 to 10.17.0 by @dependabot in #136
- Bump net.javacrumbs.json-unit:json-unit-assertj from 3.2.7 to 3.3.0 by @dependabot in #137
- Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0 by @dependabot in #135
- Bump org.assertj:assertj-core from 3.24.2 to 3.26.0 by @dependabot in #138
- Update Jenkins Security Scan action by @strangelookingnerd in #143
- Bump org.assertj:assertj-core from 3.26.0 to 3.26.3 by @dependabot in #139
- Bump io.jenkins.tools.bom:bom-2.440.x from 3234.v5ca_5154341ef to 3413.v0d896b_76a_30d by @dependabot in #148
- Bump org.jenkins-ci.plugins:plugin from 4.86 to 4.88 by @dependabot in #150
- Bump com.puppycrawl.tools:checkstyle from 10.17.0 to 10.18.2 by @dependabot in #149
- Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.4.0 to 3.5.0 by @dependabot in #145
- Bump net.javacrumbs.json-unit:json-unit-assertj from 3.3.0 to 3.4.1 by @dependabot in #141
- Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.5.0 to 3.6.0 by @dependabot in #152
- Bump com.puppycrawl.tools:checkstyle from 10.18.2 to 10.20.0 by @dependabot in #154
- Bump io.jenkins.tools.bom:bom-2.462.x from 3559.vb_5b_81183b_d23 to 3613.v584fca_12cf5c by @dependabot in #151
- Bump com.puppycrawl.tools:checkstyle from 10.20.0 to 10.20.2 by @dependabot in #161
- Bump net.javacrumbs.json-unit:json-unit-assertj from 3.4.1 to 4.1.0 by @dependabot in #160
- Bump io.jenkins.tools.bom:bom-2.462.x from 3613.v584fca_12cf5c to 3761.vd922730f0fd2 by @dependabot in #159
New Contributors
- @basil made their first contribution in #131
- @strangelookingnerd made their first contribution in #133
- @yaroslavafenkin made their first contribution in #155
- @mbrannstrom made their first contribution in #156
Full Changelog: dependency-check-jenkins-plugin-5.5.0...dependency-check-jenkins-plugin-5.6.0
Contributors
Assets 2
5.5.0
Features
JENKINS-72557 Add ability to configure NVD API Key for OWSP dependency-check library (nfalco79)
5.4.3
Bugfix
JENKINS-71916 dependency-check CLI does not start (nfalco79)
JENKINS-71982 dependency-check fail the build due to invalid version (nfalco79)
5.4.2
Bugfix
JENKINS-71851 Dependency-check 5.4.1 fails with NPE when installer is of type folder (nfalco79)
5.4.1
Bugfix
JENKINS-71670 With multipe versions installed, job config doesn't use the configured version (malice00)
JENKINS-70900 Not all error Codes returned by ODC CLI are fatal errors thus should not result in a failed build (nfalco79)
5.4.0
Features
JENKINS-56898 Add support for configuration-as-code (nfalco79)
JENKINS-59238 Add links to the CVE information of the NVD site (nfalco79)
5.3.0
Bugfixes
Fix order of severity enumeration so that, in case two or more trends have the same issues counter than, the top most line is colored with the greater severity
Features
JENKINS-70429 Merge duplicate vulnerability records when multiple (mgorovoy)
(nfalco79)
Use common lang3 jenkins API plugin (StefanSpieker)
5.2.1
Improvements
Partial removal of font-awesome from java code, we need to replace footable library to remove font resources
Replace JQuery with jquery3-api plugin
Replace echart.js with echarts-api-plugin
Enable tool cache on jenkins master.
Move save of installations to the right class and not as global builder step configuration.
Full Changelog: dependency-check-jenkins-plugin-5.2.0...dependency-check-jenkins-plugin-5.2.1
5.2.0
Bugfixes
JENKINS-58610 Running dependencyCheckPublisher doesn't aggregate reports correctly (mum-viadee)
JENKINS-59869 OWASP Dependency-Check Plugin v5.2.2 declarative pipeline java not recognized (thomasgl-orange)
Features
JENKINS-67870 Add project action Latest Dependency-Check (nfalco79)
JENKINS-67682 Improve pipeline support to indicate which stage is failed (nfalco79)
Change name from bintray to github