Details
-
Task
-
Status: Open
-
Minor
-
Resolution: Unresolved
-
Jena 4.3.2
-
None
-
None
Description
https://sonatype.github.io/ossindex-maven/maven-plugin/
We might add this to the build or to a profile.
The downside is that there is already a lot of build output. Too much output means it is very easy to miss warnings so adding this (there are 47 modules) might hide warnings from other plugins. This plugin can be set to fail the build.
mvn -q hides all but errors and maybe hides nested build information used by the release which comes out as [INFO] [WARNING]...
Dependencies change infrequently. This could be setup in a profile and have a special Jenkins job.
It can be run manually:
mvn org.sonatype.ossindex.maven:ossindex-maven-plugin:audit -fn -f pom.xml