This repository has been archived by the owner on Dec 27, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 1
/
build.gradle
67 lines (56 loc) · 3 KB
/
build.gradle
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
plugins {
id("org.openrewrite.build.recipe-library") version "latest.release"
id("org.owasp.dependencycheck") version "latest.release"
}
dependencyCheck {
analyzers.assemblyEnabled = false
analyzers.nodeAuditEnabled = false
analyzers.nodeEnabled = false
failBuildOnCVSS = System.getenv("FAIL_BUILD_ON_CVSS")?.toFloatOrNull() ?: 9.0F
format = System.getenv("DEPENDENCY_CHECK_FORMAT") ?: "HTML"
nvd.apiKey = System.getenv("NVD_API_KEY")
suppressionFile = "suppressions.xml"
}
group = "org.openrewrite.recipe"
description = "Patch Java security vulnerabilities. Automatically."
def rewriteVersion = rewriteRecipe.rewriteVersion.get()
recipeDependencies {
parserClasspath("org.yaml:snakeyaml:1.33")
parserClasspath("com.fasterxml.jackson.core:jackson-core:2.13.+")
parserClasspath("com.fasterxml.jackson.core:jackson-databind:2.13.+")
parserClasspath("org.springframework:spring-context:5.+")
parserClasspath("org.springframework.security:spring-security-config:5.+")
parserClasspath("org.springframework.security:spring-security-web:5.+")
parserClasspath("javax:javaee-api:7.+")
parserClasspath("jakarta.servlet:jakarta.servlet-api:4.+")
}
dependencies {
compileOnly("org.projectlombok:lombok:latest.release")
annotationProcessor("org.projectlombok:lombok:latest.release")
implementation(platform("org.openrewrite:rewrite-bom:$rewriteVersion"))
implementation("org.openrewrite:rewrite-java")
implementation("org.openrewrite:rewrite-maven")
implementation("org.openrewrite.recipe:rewrite-static-analysis:$rewriteVersion")
implementation("org.openrewrite:rewrite-yaml")
implementation("org.openrewrite:rewrite-xml")
implementation("org.openrewrite.meta:rewrite-analysis:$rewriteVersion")
implementation("org.openrewrite.recipe:rewrite-spring:$rewriteVersion")
implementation("com.nimbusds:nimbus-jose-jwt:9.+")
runtimeOnly("org.openrewrite:rewrite-java-17")
testImplementation("org.junit.jupiter:junit-jupiter-api:latest.release")
testImplementation("org.junit.jupiter:junit-jupiter-params:latest.release")
testRuntimeOnly("org.junit.jupiter:junit-jupiter-engine:latest.release")
testImplementation("org.openrewrite:rewrite-test:$rewriteVersion")
testImplementation("org.assertj:assertj-core:latest.release")
testImplementation("com.arakelian:faker:latest.release")
testImplementation("org.springframework:spring-web:5.+")
testImplementation("org.springframework:spring-context:5.+")
testImplementation("org.springframework:spring-webflux:5.+")
testImplementation("javax:javaee-api:7.+")
testRuntimeOnly("junit:junit:latest.release")
testRuntimeOnly("org.springframework.boot:spring-boot-starter:2.+")
testRuntimeOnly("org.springframework.boot:spring-boot-starter-test:2.+")
testRuntimeOnly("org.springframework.security:spring-security-config:5.+")
testRuntimeOnly("org.springframework.security:spring-security-web:5.+")
testRuntimeOnly("jakarta.servlet:jakarta.servlet-api:4.+")
}