From a54db1340c522fd210e68f78165a3e119178cd8e Mon Sep 17 00:00:00 2001
From: OZGCloud <ozgcloud@mgm-tp.com>
Date: Thu, 16 Nov 2023 15:13:01 +0100
Subject: [PATCH] increase dependency check thresholds
---
Jenkinsfile | 21 +++++++++++++++++++--
dependency-check-supressions.xml | 6 ++++++
2 files changed, 25 insertions(+), 2 deletions(-)
create mode 100644 dependency-check-supressions.xml
diff --git a/Jenkinsfile b/Jenkinsfile
index a76eb51..3d8ffc1 100644
--- a/Jenkinsfile
+++ b/Jenkinsfile
@@ -166,8 +166,25 @@ pipeline {
--disableArchive
--prettyPrint''', odcInstallation: 'dependency-check-owasp'
- dependencyCheckPublisher pattern: 'dependency-check-report.xml'
- }
+ dependencyCheckPublisher(
+ pattern: 'dependency-check-report.xml' ,
+ unstableNewCritical: 999,
+ unstableNewHigh: 999,
+ unstableNewMedium: 999,
+ unstableNewLow: 999,
+ unstableTotalCritical: 999,
+ unstableTotalHigh: 999,
+ unstableTotalMedium: 999,
+ unstableTotalLow: 999,
+ failedNewCritical: 999,
+ failedNewHigh: 999,
+ failedNewMedium: 999,
+ failedNewLow: 999,
+ failedTotalCritical: 999,
+ failedTotalHigh: 999,
+ failedTotalMedium: 999,
+ failedTotalLow: 999
+ ) }
}
}
post {
diff --git a/dependency-check-supressions.xml b/dependency-check-supressions.xml
new file mode 100644
index 0000000..880fe0f
--- /dev/null
+++ b/dependency-check-supressions.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
+ <suppress>
+ <vulnerabilityName>CVE-DUMMY</vulnerabilityName>
+ </suppress>
+</suppressions>
\ No newline at end of file
--
GitLab