Feb 25, 2024 · Dependency-Check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities.
Missing: source | Show results with:source
Mar 25, 2024 · Add the ability to scan your dependencies and get an insight on the vulnerabilities, compliance, maintainability, popularity and more.
Missing: source | Show results with:source
Apr 25, 2024 · A model to manage a set of issues of static code analysis runs. This includes the possibility to track issues in different source code versions ...
The Jenkins security team created a custom code scanner based on GitHub's CodeQL. It is capable of finding vulnerabilities common in Jenkins plugins. This page ...
Apr 12, 2023 · Dependency-Track is an intelligent Software Supply Chain Component Analysis platform that allows organizations to identify and reduce risk from ...
This plugin provides a deep integration between Jenkins and Maven. It adds support for automatic triggers between projects depending on SNAPSHOTs as well as ...
This plugin can analyze dependencies and generate trend reports for Dependency-Check, an open source utility that detects known vulnerabilities in project ...
Spotbugs checks are included in the Apache Maven verify step. Run the spotbugs analysis checks as part of the Apache Maven verify step with the command: mvn ...
Klocwork - Step 1 (CI/Full) - Capture Build Information runs a Klocwork build specification generation tool to capture compilation information about the ...
Nov 28, 2023 · The plugin adds the ability to perform security analysis with Fortify Static Code Analyzer, upload results to Fortify Software Security Center, ...
Missing: maven | Show results with:maven