Uploaded image for project: 'Tika'
  1. Tika
  2. TIKA-3648

Fail build if ossindex-maven-plugin violation is detected

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 2.2.1
    • 2.4.0
    • build, security
    • None

    Description

      The ossindex-maven-plugin can really assist us in detecting and preventing security vulnerabilities and also mitigating associated risk and exposure.
      I propose to fail the build if ossindex-maven-plugin violation is detected
      https://github.com/apache/tika/blob/main/tika-parent/pom.xml#L639

      Attachments

        Issue Links

        is related to

        Improvement - An improvement or enhancement to an existing feature or task. TIKA-3651 Activate Dependabot on Tika main branch

        • Major - Major loss of function.
        • Resolved
        links to

        Web Link GitHub Pull Request #480

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            lewismc Lewis John McGibbney
            lewismc Lewis John McGibbney
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment