Package org.owasp.dependencycheck.analyzer

Class KnownExploitedVulnerabilityAnalyzer

java.lang.Object

org.owasp.dependencycheck.analyzer.AbstractAnalyzer

org.owasp.dependencycheck.analyzer.KnownExploitedVulnerabilityAnalyzer

All Implemented Interfaces:

Analyzer

@ThreadSafe
public class KnownExploitedVulnerabilityAnalyzer
extends AbstractAnalyzer

This analyzer adds information about known exploited vulnerabilities.

Author:

Jeremy Long

Constructor Summary

Constructors

Constructor	Description
KnownExploitedVulnerabilityAnalyzer()

Method Summary

Modifier and Type	Method	Description
protected void	analyzeDependency(Dependency dependency, Engine engine)	Adds information about the known exploited vulnerabilities to the analysis.
AnalysisPhase	getAnalysisPhase()	Returns the phase that the analyzer is intended to run in.
protected java.lang.String	getAnalyzerEnabledSettingKey()	Returns the setting key to determine if the analyzer is enabled.
java.lang.String	getName()	Returns the name of the analyzer.
void	prepareAnalyzer(Engine engine)	The prepare method does nothing for this Analyzer.

Methods inherited from class org.owasp.dependencycheck.analyzer.AbstractAnalyzer

analyze, close, closeAnalyzer, getSettings, initialize, isEnabled, prepare, setEnabled, supportsParallelProcessing

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

KnownExploitedVulnerabilityAnalyzer

public KnownExploitedVulnerabilityAnalyzer()

Method Detail

getName

public java.lang.String getName()

Returns the name of the analyzer.

Returns:

the name of the analyzer.

getAnalysisPhase

public AnalysisPhase getAnalysisPhase()

Returns the phase that the analyzer is intended to run in.

Returns:

the phase that the analyzer is intended to run in.

getAnalyzerEnabledSettingKey

protected java.lang.String getAnalyzerEnabledSettingKey()

Returns the setting key to determine if the analyzer is enabled.

Specified by:

getAnalyzerEnabledSettingKey in class AbstractAnalyzer

Returns:

the key for the analyzer's enabled property

prepareAnalyzer

public void prepareAnalyzer(Engine engine)
                     throws InitializationException

The prepare method does nothing for this Analyzer.

Overrides:

prepareAnalyzer in class AbstractAnalyzer

Parameters:

engine - a reference the dependency-check engine

Throws:

InitializationException - thrown if there is an exception

analyzeDependency

protected void analyzeDependency(Dependency dependency,
                                 Engine engine)
                          throws AnalysisException

Adds information about the known exploited vulnerabilities to the analysis.

Specified by:

analyzeDependency in class AbstractAnalyzer

Parameters:

dependency - The dependency being analyzed

engine - The scanning engine

Throws:

AnalysisException - is thrown if there is an exception analyzing the dependency.