Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance. Project price only 1 $
You can buy this project and download/modify it how often you want.
dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.
#**
This file is part of Dependency-Check.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
Copyright (c) 2012 Jeremy Long. All Rights Reserved.
@author Jeremy Long
@version 1.8
*#
$version
#foreach($prop in $properties.getMetaData().entrySet())
$enc.xml($prop.key)$enc.xml($prop.value)
#end
$enc.xml($applicationName)
#if ($groupID)
$enc.xml($groupID)
#end
#if ($artifactID)
$enc.xml($artifactID)
#end
#if ($applicationVersion)
$enc.xml($applicationVersion)
#end
$scanDateXMLThis report contains data retrieved from the National Vulnerability Database: https://nvd.nist.gov, Node Security Platform: https://nodesecurity.io, and the RetireJS community.
#foreach($dependency in $dependencies)
$enc.xml($dependency.DisplayFileName)$enc.xml($dependency.FilePath)#if(!$dependency.isVirtual())$enc.xml($dependency.Md5sum)#end#if(!$dependency.isVirtual())$enc.xml($dependency.Sha1sum)#end#if(!$dependency.isVirtual())$enc.xml($dependency.Sha256sum)#end
#if ($dependency.description)
$enc.xml($dependency.description)
#end
#if ($dependency.license)
$enc.xml($dependency.license)
#end
#if ($dependency.projectReferences.size()>0)
#foreach($ref in $dependency.projectReferences)
$enc.xml($ref)
#end
#end
#if ($dependency.getRelatedDependencies().size()>0)
#foreach($related in $dependency.getRelatedDependencies())
$enc.xml($related.FilePath)#if(!$dependency.isVirtual())$enc.xml($dependency.Sha256sum)#end#if(!$related.isVirtual())$enc.xml($related.Sha1sum)#end#if(!$related.isVirtual())$enc.xml($related.Md5sum)#end
#foreach($id in $related.getIdentifiers())
#if ($id.type=="maven" || $id.type=="npm")
$enc.xml($id.value)
#if( $id.url )
$enc.xml($id.url)
#end
#if( $id.description )
$enc.xml($id.description)
#end
#if ($id.notes)
$enc.xml($id.notes)
#end
#end
#end
#end
#end
#foreach($evidence in $dependency.getEvidence($VENDOR))
$enc.xml($evidence.getSource())$enc.xml($evidence.getName())$enc.xml($evidence.getValue().trim())
#end
#foreach($evidence in $dependency.getEvidence($PRODUCT))
$enc.xml($evidence.getSource())$enc.xml($evidence.getName())$enc.xml($evidence.getValue().trim())
#end
#foreach($evidence in $dependency.getEvidence($VERSION))
$enc.xml($evidence.getSource())$enc.xml($evidence.getName())$enc.xml($evidence.getValue().trim())
#end
#if($dependency.getIdentifiers().size()>0)
#foreach($id in $dependency.getIdentifiers())
$enc.xml($id.value)
#if( $id.url )
$enc.xml($id.url)
#end
#if( $id.description )
$enc.xml($id.description)
#end
#if ($id.notes)
$enc.xml($id.notes)
#end
#end
#foreach($id in $dependency.getSuppressedIdentifiers())
($id.value)
#if( $id.url )
$enc.xml($id.url)
#end
#if( $id.description )
$enc.xml($id.description)
#end
#if ($id.notes)
$enc.xml($id.notes)
#end
#end
#end
#if($dependency.getVulnerabilities().size()>0 || $dependency.getSuppressedVulnerabilities().size()>0)
#foreach($vuln in $dependency.getVulnerabilities(true))
$enc.xml($vuln.name)$vuln.cvssScore#if($vuln.cvssAccessVector)$enc.xml($vuln.cvssAccessVector)#end#if($vuln.cvssAccessComplexity)$enc.xml($vuln.cvssAccessComplexity)#end#if($vuln.cvssAuthentication)$enc.xml($vuln.cvssAuthentication)#end#if($vuln.cvssConfidentialityImpact)$enc.xml($vuln.cvssConfidentialityImpact)#end#if($vuln.cvssIntegrityImpact)$enc.xml($vuln.cvssIntegrityImpact)#end#if($vuln.cvssAvailabilityImpact)$enc.xml($vuln.cvssAvailabilityImpact)#end
#if ($vuln.cvssScore<4.0)
Low
#elseif ($vuln.cvssScore>=7.0)
High
#else
Medium
#end
#if ($vuln.cwe)
$enc.xml($vuln.cwe)
#end
$enc.xml($vuln.description)
#if ($vuln.notes)
$enc.xml($vuln.notes)
#end
#foreach($ref in $vuln.getReferences())
$enc.xml($ref.source)$enc.xml($ref.url)$enc.xml($ref.name)
#end
#foreach($vs in $vuln.getVulnerableSoftware())
$enc.xml($vs.name)
#end
#end
#foreach($vuln in $dependency.getSuppressedVulnerabilities(true))
$enc.xml($vuln.name)$vuln.cvssScore$enc.xml($vuln.cvssAccessVector)$enc.xml($vuln.cvssAccessComplexity)$enc.xml($vuln.cvssAuthentication)$enc.xml($vuln.cvssConfidentialityImpact)$enc.xml($vuln.cvssIntegrityImpact)$enc.xml($vuln.cvssAvailabilityImpact)
#if ($vuln.cvssScore<4.0)
Low
#elseif ($vuln.cvssScore>=7.0)
High
#else
Medium
#end
#if ($vuln.cwe)
$enc.xml($vuln.cwe)
#end
$enc.xml($vuln.description)
#if ($vuln.notes)
$enc.xml($vuln.notes)
#end
#foreach($ref in $vuln.getReferences())
$enc.xml($ref.source)$enc.xml($ref.url)$enc.xml($ref.name)
#end
#foreach($vs in $vuln.getVulnerableSoftware())
$enc.xml($vs.name)
#end
#end
#end
#end
