Upstream DependencyCheck bug causes exceptions (fixed in DependencyCheck 7.4.4)
davidcheney-livongo opened this issue · comments
David Cheney commented
Describe the bug
CVE-2020-36569 was updated in the NIST database recently with a field which caused exceptions when ingesting into the local database. See jeremylong/DependencyCheck#5220 .
This has been fixed in DependencyCheck 7.4.4
Version of sbt-dependency-check used
The problem occurs using version 4.1.0 of the the plugin.
Log file
https://gist.github.com/davidcheney-livongo/c207f15f0d5931786cbea33578d0ef21
To Reproduce
Steps to reproduce the behavior:
- include sbt-dependency-check plugin
- run
sbt dependencyCheck
Expected behavior
the dependencyCheck target should succeed or output a report of vulnerable dependencies
Additional context
Viacheslav Vasianovych commented
@davidcheney-livongo waiting for it so much