GitHub - huzhanchi/dependency-check

整体介绍

dependency-check 是owsap下对java漏洞组件依赖的检查，不过官方只支持本地模式，即漏洞库本地更新，本地检查。我们做了本地轻量级的plugin，服务端做复杂检查的改进，同时能够阻断包含严重漏洞业务构建流程

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
ant		ant
archetype		archetype
cli		cli
collector		collector
core		core
cveworker		cveworker
dependency		dependency
images		images
maven		maven
src		src
utils		utils
.gitattributes		.gitattributes
.gitignore		.gitignore
.travis.settings.xml		.travis.settings.xml
.travis.yml		.travis.yml
LICENSE.txt		LICENSE.txt
NOTICE.txt		NOTICE.txt
README.MD		README.MD
RELEASE_NOTES.md		RELEASE_NOTES.md
SECURITY.md		SECURITY.md
coverity_scan.sh		coverity_scan.sh
pom.xml		pom.xml
publish_docker.sh		publish_docker.sh
settings.xml		settings.xml