Package org.owasp.dependencycheck.maven

Class UpdateMojo

  • All Implemented Interfaces:
    org.apache.maven.plugin.ContextEnabled, org.apache.maven.plugin.Mojo, org.apache.maven.reporting.MavenReport
    @Mojo(name="update-only",
      requiresProject=false,
      defaultPhase=GENERATE_RESOURCES,
      threadSafe=true,
      requiresDependencyResolution=NONE,
      requiresOnline=true,
      aggregator=true)
public class UpdateMojo
extends BaseDependencyCheckMojo
    Maven Plugin that updates the local cache of the NVD data from NIST.
    Author:
    Jeremy Long

    • Constructor Detail

      • UpdateMojo

        public UpdateMojo()

    • Method Detail

      • canGenerateReport

        public boolean canGenerateReport()
        Returns false; this mojo cannot generate a report.
        Returns:
        false

      • runCheck

        protected void runCheck()
                 throws org.apache.maven.plugin.MojoExecutionException,
                        org.apache.maven.plugin.MojoFailureException
        Executes the dependency-check engine on the project's dependencies and generates the report.
        Overrides:
        runCheck in class BaseDependencyCheckMojo
        Throws:
        org.apache.maven.plugin.MojoExecutionException - thrown if there is an exception executing the goal
        org.apache.maven.plugin.MojoFailureException - thrown if dependency-check is configured to fail the build

      • getName

        public java.lang.String getName​(java.util.Locale locale)
        Returns the report name.
        Parameters:
        locale - the location
        Returns:
        the report name

      • getDescription

        public java.lang.String getDescription​(java.util.Locale locale)
        Gets the description of the Dependency-Check report to be displayed in the Maven Generated Reports page.
        Parameters:
        locale - The Locale to get the description for
        Returns:
        the description

      • scanDependencies

        protected ExceptionCollection scanDependencies​(Engine engine)
                                        throws org.apache.maven.plugin.MojoExecutionException
        Throws an exception if called. The update mojo does not scan dependencies.
        Specified by:
        scanDependencies in class BaseDependencyCheckMojo
        Parameters:
        engine - the engine used to scan
        Returns:
        a collection of exceptions
        Throws:
        org.apache.maven.plugin.MojoExecutionException - thrown if there is an exception

      • scanPlugins

        protected ExceptionCollection scanPlugins​(Engine engine,
                                          ExceptionCollection exCollection)
                                   throws org.apache.maven.plugin.MojoExecutionException
        Throws an exception if called. The purge mojo does not scan dependencies.
        Specified by:
        scanPlugins in class BaseDependencyCheckMojo
        Parameters:
        engine - the engine used to scan
        exCollection - the collection of exceptions that might have occurred previously
        Returns:
        a collection of exceptions
        Throws:
        org.apache.maven.plugin.MojoExecutionException - thrown if there is an exception