Update OWASP Plugin to 11.1.1 (#1005)

* Use new OWASP plugin version * Use NVD_API_KEY
HL7 · Dec 10, 2024 · 18287e6 · 18287e6
1 parent cb1a5f2
commit 18287e6
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 3 deletions.
diff --git a/.github/workflows/owasp.yml b/.github/workflows/owasp.yml
@@ -17,10 +17,16 @@ jobs:
     - name: Checkout repository
       uses: actions/checkout@v4
 
-    - run: |
+    - env:
+        NVD_API_KEY:
+          ${{ secrets.NVD_API_KEY }}
+      run: |
         mvn -DskipTests install -P OWASP_CHECK
 
-    - run: |
+    - env:
+        NVD_API_KEY:
+          ${{ secrets.NVD_API_KEY }}
+      run: |
         mvn -DskipTests dependency-check:aggregate -P OWASP_CHECK
 
     - name: Upload SARIF file

diff --git a/pom.xml b/pom.xml
@@ -312,8 +312,9 @@
                 <plugin>
                     <groupId>org.owasp</groupId>
                     <artifactId>dependency-check-maven</artifactId>
-                    <version>8.2.1</version>
+                    <version>11.1.1</version>
                     <configuration>
+                        <nvdApiKeyEnvironmentVariable>NVD_API_KEY</nvdApiKeyEnvironmentVariable>
                         <suppressionFiles>
                             <suppressionFile>cve-suppression.xml</suppressionFile>
                         </suppressionFiles>