漏洞扫描

tenant/share-table/pom.xml

@@ -18,6 +18,7 @@
         <freemarker.version>2.3.31</freemarker.version>
         <fastjson2.version>2.0.25</fastjson2.version>
         <commons-lang3.version>3.12.0</commons-lang3.version>
+        <dependency-check-maven.version>8.3.1</dependency-check-maven.version>
     </properties>
 
     <dependencies>
@@ -90,6 +91,15 @@
             <artifactId>druid-spring-boot-starter</artifactId>
             <version>${druid.version}</version>
         </dependency>
+
+        <!--漏洞扫描-->
+        <!-- https://mvnrepository.com/artifact/org.owasp/dependency-check-maven -->
+        <dependency>
+            <groupId>org.owasp</groupId>
+            <artifactId>dependency-check-maven</artifactId>
+            <version>${dependency-check-maven.version}</version>
+        </dependency>
+
     </dependencies>
 
     <dependencyManagement>
@@ -132,6 +142,21 @@
                     </execution>
                 </executions>
             </plugin>
+            <!--代码依赖包安全漏洞检测-->
+            <plugin>
+                <groupId>org.owasp</groupId>
+                <artifactId>dependency-check-maven</artifactId>
+                <configuration>
+                    <autoUpdate>true</autoUpdate>
+                </configuration>
+                <executions>
+                    <execution>
+                        <goals>
+                            <goal>check</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
         </plugins>
     </build>