com.danielsomerfield.cvecheck.FileVulnerabilities.groovy Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of gradle-cve-dependency-check Show documentation

CVE Checking for Gradle

There is a newer version: 0.6.2-100

Show newest version

package com.danielsomerfield.cvecheck

import org.owasp.dependencycheck.Engine
import org.owasp.dependencycheck.dependency.Dependency
import org.owasp.dependencycheck.dependency.Vulnerability

class FileVulnerabilities {

  def static List getVulnerabilitiesForFiles(Engine engine, Collection files){
    files.each {
      engine.scan(it)
    }

    engine.analyzeDependencies()

    engine.getDependencies().collect { Dependency dependency ->
      dependency.getVulnerabilities()
    }.flatten()
  }
}