Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

jeremylong / DependencyCheck Public

Notifications You must be signed in to change notification settings
Fork 1.3k
Star 6.6k

Code
Issues 498
Pull requests 5
Actions
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Wiki
Security
Insights

Releases: jeremylong/DependencyCheck

Releases · jeremylong/DependencyCheck

Version 9.0.0

22 Nov 12:36

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 9.0.0

breaking changes: See the upgrade notice

feat: Utilize NVD API (#5978)
feat: gitlab dependency scanner report format #5919 (#5920)
fix: Use ASCII apostrophe for console message (#6076)

See the full listing of changes.

Assets 7

Loading

dpfrederick, 0xfeeddeadbeef, mlemmens, gtoison, and lbillinghamwrk reacted with hooray emoji

All reactions

🎉 5 reactions

5 people reacted

Version 8.4.3

15 Nov 11:00

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.4.3

fix: bump jcs3 (#6047)
docs: Corrected docs on hostedSuppressions (#6035)

See the full listing of changes.

Assets 7

Loading

All reactions

Version 8.4.2

22 Oct 11:10

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.4.2

fix: correct log configuration in cli (#6002)

See the full listing of changes.

Assets 7

Loading

All reactions

Version 8.4.1

21 Oct 14:44

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.4.1

fix: upgrade to JCS3 (#5114)
fix: Support ~= version specifier in requirements.txt and pipfile (#5902)
fix: Version of dependency no longer ignored when CPE product has a 'java' suffix in a product name (#5901)
fix: Do not filter out evidences added by hints (#5900)
fix: fixes FP #5925 (#5927)

See the full listing of changes.

Assets 7

Loading

mjkodkks and jellisgwn reacted with thumbs up emoji

All reactions

👍 2 reactions

2 people reacted

Version 8.4.0

19 Aug 13:35

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.4.0

Added

feat: Add support for Nexus v3 to NexusAnalyzer (#5849)

Fixed

fix: Hint Analyzer should run before VersionFilter Analyzer (#5818)
chore: switch to sha1-pinning as suggested by Semgrep
fix: OSS Index Analyzer SocketTimeoutException exception handling based on warn only parameter (#5845)
fix: use curl with -L to follow github redirect (#5808)
fix: use curl with -L to follow github redirect
fix: #5671 out of memory error (#5789)
fix: #5671 Exit method as soon as we detect a loop to prevent an infinite loop leading to an OutOfMemoryError

Assets 7

Loading

Prigovor, Nriver, leec94, Ali-xChange, and 0xfeeddeadbeef reacted with thumbs up emoji

All reactions

👍 5 reactions

5 people reacted

Version 8.3.1

12 Jun 11:43

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.3.1

Re-release of 8.3.0 as 8.3.1.

Assets 7

Loading

kybercryst4l, strangelookingnerd, and liubingde-dev reacted with thumbs up emoji

kybercryst4l, Dhanxy, Gzerox, and bh2023testuser reacted with heart emoji

All reactions

👍 3 reactions
❤️ 4 reactions

6 people reacted

v8.3.0

12 Jun 12:28

jeremylong

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

v8.3.0

Added

Add LibmanAnalyzer (#5652)
Update HTML report Dependencies header based on display settings (#5619)
Add link to suppressed vulnerabilities header in HTML report (#5620)
Enable local proxy configuration in maven plugin configuration (#5696)

Fixed

Fix npm alias present in requires of dependencies (#5703)
Make Central URL configurable via CLI (#5667)
Ensure support of CVSSv3.1 (#5602)

See the full listing of changes.

Assets 2

Loading

All reactions

Version 8.2.1

23 Mar 11:42

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.2.1

Fixed

NullPointerException in MSBuildAnalyzer (#5589)
SQL Syntax for Oracle (#5590)
Use https:// URLs in report templates (#5582)

See the full listing of changes.

Assets 7

Loading

mhienle, colmac-thomasops, thett01, and srcimon reacted with thumbs up emoji

hilari0n reacted with hooray emoji

sadboy-cn reacted with heart emoji

All reactions

👍 4 reactions
🎉 1 reaction
❤️ 1 reaction

6 people reacted

Version 8.2.0

22 Mar 10:41

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.2.0

Added

Support msbuild Directory.build.props (#5475)
better display of NPM audit references
Add CVSS V3 results from NPM Audit results

Fixed

Fix several issues on NPM Audit reporting (#5546)
Case issue in SQL (#5557)
Fix CWE(s) extraction for NPM Audit advisories
Use the stable github_advisory_id instead of the now unstable id in NPM audit results

See the full listing of changes.

Assets 7

Loading

mateomedus and MoisesTapia reacted with heart emoji

PalumboT and MoisesTapia reacted with eyes emoji

All reactions

❤️ 2 reactions
👀 2 reactions

3 people reacted

Version 8.1.2

28 Feb 12:29

This commit was signed with the committer’s verified signature.

jeremylong Jeremy Long

GPG key ID: FFDE55BE73A2D1ED

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

Version 8.1.2

Fixed

Fix NullPointerException in the Jar Analyzer introduced in 8.1.1 (#5512)

Assets 7

Loading

gchudnov, grumpyf0x48, andirady, udengaardandersent-ELS, karlhenselin, underrobyn, mattmedus, and joonaluoma reacted with thumbs up emoji

All reactions

👍 8 reactions

8 people reacted

Previous 1 2 3 4 5 6 7 8 Next

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.