dependency check with inhert instead of aggregate (#11709)

2021-09-15 04:18:59 -07:00 · 2021-09-15 04:18:59 -07:00 · 1370fcf9bf
parent 0cbd71ebda
commit 1370fcf9bf
2 changed files with 1 additions and 5 deletions
--- a/.travis.yml
+++ b/.travis.yml
@ -725,7 +725,7 @@ jobs:
      stage: cron
      install: skip
      script: |-
-        ${MVN} dependency-check:purge dependency-check:aggregate -pl '!integration-tests' || { echo "
+        ${MVN} dependency-check:purge dependency-check:check || { echo "

        The OWASP dependency check has found security vulnerabilities. Please use a newer version
        of the dependency that does not have vulnerabilities. To see a report run
--- a/pom.xml
+++ b/pom.xml
@ -1493,7 +1493,6 @@
                <groupId>org.owasp</groupId>
                <artifactId>dependency-check-maven</artifactId>
                <version>6.0.3</version>
-                <inherited>false</inherited>
                <configuration>
                    <failBuildOnCVSS>7</failBuildOnCVSS>
                    <skipProvidedScope>true</skipProvidedScope>
@ -1505,9 +1504,6 @@
                </configuration>
                <executions>
                    <execution>
-                        <goals>
-                            <goal>aggregate</goal>
-                        </goals>
                        <phase>none</phase>  <!-- TODO: Consider enabling so part of dev flow instead of just CI -->
                    </execution>
                </executions>