Skip to content

Bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4

Bumps org.owasp:dependency-check-maven from 10.0.3 to 10.0.4.

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 10.0.4

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 10.0.4 (2024-09-01)

  • build(deps): exclude unused dependency (#6916)
  • fix: improve regex (#6917)
  • fix: correctly handle null values in cpeMatch (#6915)
  • fix(site): Update Fluido skin to resolve broken fork-me-on-github image (#6914)
  • fix: do not report over 100% download complete (#6899)
  • fix: Correct spelling of occurring in NvdApiDataSource.java (#6883)
  • fix: skip blank lines in requirements.txt (#6867)
  • fix: correct percentage calculation (#6868)
  • docs: remove old recommendation (#6860)

See the full listing of changes.

Commits
  • 5120cbd build: prepare release v10.0.4
  • 05df233 docs: release notes for 10.0.4
  • a3a74bc build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 t...
  • 67c9d9e build(deps): bump golang from 1.22.6-alpine to 1.23.0-alpine (#6893)
  • 1bc85e2 build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin
  • 2fe67ed build(deps): bump commons-codec:commons-codec from 1.17.0 to 1.17.1 (#6900)
  • e835fad build(deps): exclude unused dependency (#6916)
  • ccc151a fix: improve regex (#6917)
  • e090d40 chore: additional tests (#6918)
  • b4339ce fix: correctly handle null values in cpeMatch (#6915)
  • Additional commits viewable in compare view


Dependabot commands
You can trigger Dependabot actions by commenting on this MR
  • $dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

Merge request reports

Loading