fix security vulnerability in snakeyaml

This commit is contained in:
Michael Hoennig 2022-09-02 08:58:15 +02:00
parent df48bfc0da
commit fd96bfffb2
2 changed files with 5 additions and 0 deletions

View File

@ -135,6 +135,10 @@ dependencyCheck {
failBuildOnCVSS = 7
}
project.tasks.check.dependsOn(dependencyCheckAnalyze)
project.tasks.dependencyCheckAnalyze.doFirst { // doLast is not executed on exception, thus when we need it
println "OWASP Dependency Security Report: file:///${project.rootDir}/build/reports/dependency-check-report.html"
}
// License Check
licenseReport {

View File

@ -1,6 +1,7 @@
# Spring BOM overrides
postgresql.version = 42.4.1
snakeyaml.version = 1.31
# TODO: can be removed if all dependencies are JDK 16 compliant
org.gradle.jvmargs= \