-
-
Notifications
You must be signed in to change notification settings - Fork 93
/
build.gradle
118 lines (104 loc) · 3.81 KB
/
build.gradle
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
/*
* This file is part of dependency-check-gradle.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
* Copyright (c) 2015 Wei Ma. All Rights Reserved.
*/
plugins {
id('groovy')
id('idea')
id('eclipse')
id('signing')
id('project-report')
id('build-dashboard')
alias(libs.plugins.gradle.plugin.publish)
}
group = 'org.owasp'
version = libs.versions.odc.get()
dependencies {
implementation localGroovy()
implementation gradleApi()
api libs.owasp.dependencyCheck.core
api libs.owasp.dependencyCheck.utils
api libs.openVuln.clients
api libs.slack.webhook
testImplementation gradleTestKit()
testImplementation(libs.spock.core) {
exclude module: 'groovy-all'
}
testImplementation libs.junit.jupiter.api
testImplementation libs.junit.jupiter.params
testRuntimeOnly libs.junit.jupiter.engine
}
test {
useJUnitPlatform()
}
test.onlyIf { !project.hasProperty('skipTests') }
java {
sourceCompatibility = JavaVersion.VERSION_11
targetCompatibility = JavaVersion.VERSION_11
}
javadoc {
if (JavaVersion.current().isJava9Compatible()) {
options.addBooleanOption('html5', true)
}
}
publishing {
publications {
pluginPublication(MavenPublication) {
groupId = project.group
artifactId = 'dependency-check-gradle'
version = project.version
from components.java
pom {
name = 'dependency-check-gradle'
description = 'OWASP dependency-check gradle plugin is a software composition analysis tool used to find known vulnerable dependencies.'
url = 'https://jeremylong.github.io/DependencyCheck/'
licenses {
license {
name = 'The Apache License, Version 2.0'
url = 'https://github.com/dependency-check/dependency-check-gradle/blob/main/LICENSE.txt'
}
}
developers {
developer {
id = 'jlong'
name = 'Jeremy Long'
email = '[email protected]'
}
}
scm {
url = 'https://github.com/dependency-check/dependency-check-gradle'
connection = 'scm:git:https://github.com/dependency-check/dependency-check-gradle.git'
developerConnection = 'scm:git:https://github.com/dependency-check/dependency-check-gradle.git'
}
}
}
}
}
gradlePlugin {
website = 'http://jeremylong.github.io/DependencyCheck/dependency-check-gradle/index.html'
vcsUrl = 'https://github.com/dependency-check/dependency-check-gradle/'
plugins {
dependencyCheck {
id = 'org.owasp.dependencycheck'
displayName = 'OWASP dependency-check-gradle plugin'
description = 'A software composition analysis plugin that identifies known vulnerable dependencies used by the project.'
tags.addAll('OWASP', 'dependency-check', 'gradle-plugin', 'software-composition-analysis', 'vulnerability-detection', 'security')
implementationClass = 'org.owasp.dependencycheck.gradle.DependencyCheckPlugin'
}
}
}
publish.dependsOn publishPlugins
defaultTasks 'build'