Details
-
Improvement
-
Status: Open
-
Major
-
Resolution: Unresolved
-
0.2-incubating, 0.3-incubating
-
None
-
None
Description
Since Tamaya is such a vital part of a running software it should not have too many security problems, thus:
- enable security findbugs rules - https://find-sec-bugs.github.io
- add special build profile that checks for dependencies with known CVEs (owasp dependency scanner) - https://github.com/jeremylong/DependencyCheck
to Tamaya main repo.