aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorAndreas Fitzek <andreas.fitzek@iaik.tugraz.at>2014-10-09 13:43:04 +0200
committerAndreas Fitzek <andreas.fitzek@iaik.tugraz.at>2014-10-09 13:43:04 +0200
commit79c5b9b44d1ff28f4a71cdbc0180118a33175d44 (patch)
tree1b53188b834aeb69e1ad059aa4adc5c36fb9f5e5
parenta38d6891c9c08ddaa2818515716c28d40d515997 (diff)
downloadpdf-as-4-79c5b9b44d1ff28f4a71cdbc0180118a33175d44.tar.gz
pdf-as-4-79c5b9b44d1ff28f4a71cdbc0180118a33175d44.tar.bz2
pdf-as-4-79c5b9b44d1ff28f4a71cdbc0180118a33175d44.zip
cve Check for each projects
-rw-r--r--build.gradle28
1 files changed, 26 insertions, 2 deletions
diff --git a/build.gradle b/build.gradle
index 67ad2f6e..a29130bd 100644
--- a/build.gradle
+++ b/build.gradle
@@ -50,14 +50,14 @@ subprojects {
configurations {
deployerJars
+ cveCheck
}
repositories { mavenCentral() }
dependencies {
testCompile 'junit:junit:4.8.2'
- //to use WebDav protocol on upload
- //deployerJars 'org.apache.maven.wagon:wagon-webdav:1.0-beta-2'
+ cveCheck 'org.owasp:dependency-check-ant:1.2.5'
}
sourceCompatibility = 1.6
@@ -79,9 +79,33 @@ subprojects {
from configurations.runtime
into (new File(rootDir, 'build/alldependencies')).toString()
}
+
+ task copyDepsLocal(type: Copy) {
+ from configurations.runtime
+ into 'build/alldependencies'
+ }
rootProject.checkCVE.dependsOn copyDeps
+ task checkCVELocal << {
+ // Redefine checkCVEAnt Ant task, with the classpath property set to our newly defined
+ // cveCheck configuration classpath.
+ ant.taskdef(name: 'checkCVEAnt', classname: 'org.owasp.dependencycheck.taskdefs.DependencyCheckTask',
+ classpath: configurations.cveCheck.asPath)
+
+ // executing checkCVEAnt Task
+ ant.checkCVEAnt(
+ applicationname: project.name,
+ reportoutputdirectory: (new File(rootDir, 'releases/' + version + '/cvecheck/' + project.name)).toString(),
+ reportformat: "ALL") {
+ fileset(dir: 'build/alldependencies') {
+ include(name: '**/**')
+ }
+ }
+ }
+ checkCVELocal.dependsOn copyDepsLocal
+
+
uploadArchives {
repositories.mavenDeployer {
repository(url: project.releaseRepoUrl)