Code
Hub
Workspaces
Following
Trending
Connect
MCP
copy
Create free account
hub
/
github.com/dependency-check/DependencyCheck
/ functions
Functions
3,473 in github.com/dependency-check/DependencyCheck
⨍
Functions
3,473
◇
Types & classes
508
↓ 1 callers
Method
isValidFilePath
Validates the path to point at an existing file. @param path the path to validate if it exists @param argumentName the argument being validated (e.g.
cli/src/main/java/org/owasp/dependencycheck/CliParser.java:216
↓ 1 callers
Method
isValidFormat
Validates the format to be one of the known Formats. @param format the format to validate @return true, if format is known in Format; false otherwise
cli/src/main/java/org/owasp/dependencycheck/CliParser.java:200
↓ 1 callers
Method
isVariableSelfReferencing
(Map<String, String> vars, String key)
core/src/main/java/org/owasp/dependencycheck/analyzer/CMakeAnalyzer.java:369
↓ 1 callers
Method
isVulnerable
Returns the value of vulnerable. @return the value of vulnerable
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftware.java:484
↓ 1 callers
Method
isWarnEnabled
()
ant/src/main/java/org/owasp/dependencycheck/ant/logging/AntLoggerAdapter.java:302
↓ 1 callers
Method
isWhiteSpace
Determines if the character is whitespace. @param ch the character to check @return true if the character is whitespace; otherwise false
core/src/main/java/org/owasp/dependencycheck/xml/XmlInputStream.java:251
↓ 1 callers
Method
isYarnAuditDisabled
Returns true if the disableYarnAudit command line argument was specified. @return true if the disableYarnAudit command line argument was specified; o
cli/src/main/java/org/owasp/dependencycheck/CliParser.java:676
↓ 1 callers
Method
isZipFile
Attempts to read the first bytes of the given dependency (using its actual file path) and returns true if they match the expected first bytes of a zip
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:399
↓ 1 callers
Method
isZipFileActuallyJarFile
Attempts to determine if a zip file is actually a JAR file. @param dependency the dependency to check @return true if the dependency appears to be a
core/src/main/java/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.java:727
↓ 1 callers
Method
launchGoListReadonly
Launches `go list -json -m -mod=readonly all` in the given folder. @param folder the working folder @return a reference to the launched process @thro
core/src/main/java/org/owasp/dependencycheck/analyzer/GolangModAnalyzer.java:185
↓ 1 callers
Method
legacyAnalysis
Analyzes the package and package-lock files by extracting dependency information, creating a payload to submit to the npm audit API, submitting the pa
core/src/main/java/org/owasp/dependencycheck/analyzer/NodeAuditAnalyzer.java:231
↓ 1 callers
Method
libraryContextualName
(String type, String id)
core/src/main/java/org/owasp/dependencycheck/analyzer/RetireJsAnalyzer.java:455
↓ 1 callers
Method
loadAnalyzers
Loads the analyzers specified in the configuration file (or system properties).
core/src/main/java/org/owasp/dependencycheck/Engine.java:215
↓ 1 callers
Method
loadCachedHostedSuppressionsRules
Load the hosted suppression file from the web resource @param parser The suppressionParser to use for loading @param repoFile The cached web resource
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:303
↓ 1 callers
Method
loadCentrallyManaged
(File folder, Properties props)
core/src/main/java/org/owasp/dependencycheck/analyzer/MSBuildProjectAnalyzer.java:345
↓ 1 callers
Method
loadCpeEcosystemCache
()
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1112
↓ 1 callers
Method
loadData
Loads a HashMap containing the CWE data from a resource found in the jar. @return a HashMap of CWE data
core/src/main/java/org/owasp/dependencycheck/data/cwe/CweDB.java:59
↓ 1 callers
Method
loadDirectoryBuildProps
Attempts to load the `Directory.Build.props` file. @param directory the project directory. @return the properties from the Directory.Build.props. @th
core/src/main/java/org/owasp/dependencycheck/analyzer/MSBuildProjectAnalyzer.java:225
↓ 1 callers
Method
loadHintRules
Loads the hint rules file. @throws HintParseException thrown if the XML cannot be parsed.
core/src/main/java/org/owasp/dependencycheck/analyzer/HintAnalyzer.java:246
↓ 1 callers
Method
loadHostedSuppressionBaseData
Loads all the base suppression rules from the hosted suppression file generated/updated automatically by the FP Suppression GitHub Action for approved
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:254
↓ 1 callers
Method
loadPackagedSuppressionBaseData
Loads the suppression rules packaged with the application. @param parser The suppression parser to use @param engine a reference the dependency-check
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:202
↓ 1 callers
Method
loadSuppressionBaseData
Loads all the base suppression rules files. @param engine a reference the dependency-check engine @throws SuppressionParseException thrown if the XML
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:189
↓ 1 callers
Method
loadSuppressionData
Loads all the suppression rules files configured in the {@link Settings}. @param engine a reference to the ODC engine. @throws SuppressionParseExcept
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:148
↓ 1 callers
Method
loadSuppressionFile
Load a single suppression rules file from the path provided using the parser provided. @param parser the parser to use for loading the file @param su
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzer.java:348
↓ 1 callers
Method
lock
Obtains a lock on the resource. @throws WriteLockException thrown if a lock could not be obtained
core/src/main/java/org/owasp/dependencycheck/utils/WriteLock.java:142
↓ 1 callers
Method
matchedPrefixFor
(String systemId)
utils/src/main/java/org/owasp/dependencycheck/utils/XmlUtils.java:251
↓ 1 callers
Method
mergeNonProxyHosts
(String existingNonProxyHosts, String httpNonProxyHosts, String httpsNonProxyHosts)
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2652
↓ 1 callers
Method
multipleMatchesPayload
()
core/src/test/java/org/owasp/dependencycheck/data/artifactory/ArtifactorySearchResponseHandlerTest.java:238
↓ 1 callers
Method
muteNoisyLoggers
Hacky method of muting the noisy logging from certain libraries.
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Purge.java:131
↓ 1 callers
Method
nameFrom
(ComponentReportVulnerability vuln)
core/src/main/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzer.java:454
↓ 1 callers
Method
namesAreEqual
Determine if the dependency name is equal in the given dependencies. @param dependency a dependency to compare @param nextDependency a dependency to
core/src/main/java/org/owasp/dependencycheck/analyzer/DependencyBundlingAnalyzer.java:595
↓ 1 callers
Method
nestedCauseList
(Throwable t)
core/src/main/java/org/owasp/dependencycheck/exception/ExceptionCollection.java:219
↓ 1 callers
Method
newAzureIdentityAssemblyData
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzerTest.java:215
↓ 1 callers
Method
newAzureIdentityDependency
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzerTest.java:239
↓ 1 callers
Method
newFilter
(@NonNull final TokenStream stream, List<String> terms)
core/src/test/java/org/owasp/dependencycheck/data/lucene/BaseTokenFilterTest.java:54
↓ 1 callers
Method
noLockFileExists
Checks if a package lock file or equivalent exists for the NPM project. @param dependencyFile a reference to the `package.json` file @return <code>tr
core/src/main/java/org/owasp/dependencycheck/analyzer/NodePackageAnalyzer.java:216
↓ 1 callers
Method
noXResultDetailHeaderResponse
()
core/src/test/java/org/owasp/dependencycheck/data/artifactory/ArtifactorySearchResponseHandlerTest.java:289
↓ 1 callers
Method
numDocs
Returns the number of CPE entries stored in the index. @return the number of CPE entries stored in the index
core/src/main/java/org/owasp/dependencycheck/data/cpe/AbstractMemoryIndex.java:335
↓ 1 callers
Method
open
Opens the data source. @param cve a reference to the NVD CVE database @throws IOException when the Lucene directory to be queried does not exist or i
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:206
↓ 1 callers
Method
open
Opens the database connection pool.
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/DatabaseManager.java:535
↓ 1 callers
Method
optional
(String cve)
core/src/main/java/org/owasp/dependencycheck/analyzer/RetireJsAnalyzer.java:476
↓ 1 callers
Method
parse
Parses the given stream for MSBuild PackageReference elements. @param stream the input stream to parse @param props the Directory.Build.props propert
core/src/main/java/org/owasp/dependencycheck/data/nuget/XPathMSBuildProjectParser.java:58
↓ 1 callers
Method
parse
Parse an input stream and return the resulting {@link NugetPackage}. @param stream the input stream to parse @return the populated bean @throws Nuget
core/src/main/java/org/owasp/dependencycheck/data/nuget/XPathNugetconfParser.java:53
↓ 1 callers
Method
parse
Parses the given stream for Directory.Packages.props elements. @param stream the input stream to parse @param props the Directory.Build.props propert
core/src/main/java/org/owasp/dependencycheck/data/nuget/DirectoryPackagesPropsParser.java:56
↓ 1 callers
Method
parse
Parse the properties from the `Directory.Build.props` file InputStream.If any import nodes are found while parsing, the values will be available via `
core/src/main/java/org/owasp/dependencycheck/data/nuget/DirectoryBuildPropsParser.java:71
↓ 1 callers
Method
parseAdvisory
Parses the advisory from Node Audit. @param object the JSON object containing the advisory @return the Advisory object @throws org.json.JSONException
core/src/main/java/org/owasp/dependencycheck/data/nodeaudit/NpmAuditParser.java:74
↓ 1 callers
Method
parseAdvisoryJsons
(List<JSONObject> advisoryJsons)
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:403
↓ 1 callers
Method
parseArgs
Parses the command line arguments. @param args the command line arguments @return the results of parsing the command line arguments @throws ParseExce
cli/src/main/java/org/owasp/dependencycheck/CliParser.java:100
↓ 1 callers
Method
parseCpe
Helper method to convert a CpeMatch (generated code used in parsing the NVD JSON) into a CPE object. @param cpe the CPE Match @param cveId the CVE as
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1658
↓ 1 callers
Method
parseCpes
Parses the configuration entries from the CVE entry into a list of VulnerableSoftware objects. @param cve the CVE to parse the vulnerable software en
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1610
↓ 1 callers
Method
parseDependencyFile
(Dependency dependency)
core/src/main/java/org/owasp/dependencycheck/analyzer/PoetryAnalyzer.java:208
↓ 1 callers
Method
parseName
<p> Parses a name attribute value, from the cpe.xml, into its corresponding parts: vendor, product.</p> <p> Example:</p> <code>nbsp;nbsp;nbsp;cpe:/a:a
core/src/main/java/org/owasp/dependencycheck/data/cpe/IndexEntry.java:146
↓ 1 callers
Method
parseQuery
Parses the given string into a Lucene Query. @param searchString the search text @return the Query object @throws ParseException thrown if the search
core/src/main/java/org/owasp/dependencycheck/data/cpe/AbstractMemoryIndex.java:273
↓ 1 callers
Method
parseText
Parse text. @param text The text @param processor A processor which handles the output
core/src/main/java/org/owasp/dependencycheck/data/nvd/ecosystem/StringAhoCorasickDoubleArrayTrie.java:38
↓ 1 callers
Method
passes
Determines whether the object passes the filter. @param object the object to test @return whether or not the object passes the filter
core/src/main/java/org/owasp/dependencycheck/utils/Filter.java:28
↓ 1 callers
Method
passes
Tests is the artifact should be included in the scan (i.e. is the dependency in a scope that is being scanned). @param scope the scope of the artifac
maven/src/main/java/org/owasp/dependencycheck/maven/ArtifactScopeExcluded.java:75
↓ 1 callers
Method
payloadMimicIssue5868
()
core/src/test/java/org/owasp/dependencycheck/data/artifactory/ArtifactorySearchResponseHandlerTest.java:332
↓ 1 callers
Method
persistEcosystemCache
Persist the EcosystemCache into the database.
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:1797
↓ 1 callers
Method
populateSettings
Takes the properties supplied and updates the dependency-check settings. Additionally, this sets the system properties required to change the proxy se
core/src/main/java/org/owasp/dependencycheck/agent/DependencyCheckScanAgent.java:937
↓ 1 callers
Method
populateSettings
()
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Update.java:630
↓ 1 callers
Method
populateSettings
()
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Purge.java:173
↓ 1 callers
Method
populateSettings
()
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Check.java:1549
↓ 1 callers
Method
prepareAnalyzer
Creates the CPE Lucene Index. @param engine a reference to the dependency-check engine @throws InitializationException is thrown if there is an issue
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:171
↓ 1 callers
Method
prepareAnalyzer
Prepares a given Analyzer. This will be skipped if the analyzer is disabled. @param engine a reference to the dependency-check engine @throws Initial
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractAnalyzer.java:115
↓ 1 callers
Method
prepareFileTypeAnalyzer
Prepares the file type analyzer for dependency analysis. @param engine a reference to the dependency-check engine @throws InitializationException thr
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractFileTypeAnalyzer.java:112
↓ 1 callers
Method
prepareFileTypeAnalyzer
Performs validation on the configuration to ensure that the correct analyzers are in place. @param engine the dependency-check engine @throws Initial
core/src/main/java/org/owasp/dependencycheck/analyzer/NodePackageAnalyzer.java:123
↓ 1 callers
Method
prepareLogger
Creates a file appender and adds it to logback. @param verboseLog the path to the verbose log file
cli/src/main/java/org/owasp/dependencycheck/App.java:768
↓ 1 callers
Method
pretifyJson
Reformats the given JSON file. @param pathToJson the path to the JSON file to be reformatted @throws ReportException thrown if the given JSON file is
core/src/main/java/org/owasp/dependencycheck/reporting/ReportGenerator.java:526
↓ 1 callers
Method
pretifyXml
Reformats the given XML file. @param path the path to the XML file to be reformatted
core/src/main/java/org/owasp/dependencycheck/reporting/ReportGenerator.java:496
↓ 1 callers
Method
printStackTrace
Prints the stack trace. @param s the writer to print to
core/src/main/java/org/owasp/dependencycheck/exception/ExceptionCollection.java:177
↓ 1 callers
Method
processApi
()
core/src/main/java/org/owasp/dependencycheck/data/update/NvdApiDataSource.java:276
↓ 1 callers
Method
processDatafeed
(String nvdDataFeedUrl)
core/src/main/java/org/owasp/dependencycheck/data/update/NvdApiDataSource.java:131
↓ 1 callers
Method
processDependencies
Process the dependencies in the lock file by first parsing its dependencies and then finding the package.json for the module and adding it as a depend
core/src/main/java/org/owasp/dependencycheck/analyzer/NodePackageAnalyzer.java:347
↓ 1 callers
Method
processMixAuditOutput
Processes the mix audit output. @param rdr the reader of the report @throws AnalysisException thrown if an analysis error occurred @throws CpeValidat
core/src/main/java/org/owasp/dependencycheck/processing/MixAuditProcessor.java:136
↓ 1 callers
Method
processPom
If necessary, downloads the pom.xml from Central and adds the evidence to the dependency. @param dependency the dependency to download and process th
core/src/main/java/org/owasp/dependencycheck/analyzer/ArtifactoryAnalyzer.java:229
↓ 1 callers
Method
processPomArtifact
(File artifactFile, DependencyNode root, MavenProject proje
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:3225
↓ 1 callers
Method
processResolvedArtifact
(File artifactFile, final List<Dependency> deps, String groupId, Stri
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:3176
↓ 1 callers
Method
purlMatches
Determines if the cpeEntry specified as a PropertyType matches the given Identifier. @param suppressionEntry a suppression rule entry @param identifi
core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java:742
↓ 1 callers
Method
read
Duplicates {@link PE#read(IDataReader)} with added error handling to swallow EOFExceptions to be more lenient for certain file sections. @see PE#read(
core/src/main/java/org/owasp/dependencycheck/utils/PEParser.java:56
↓ 1 callers
Method
readAmpersand
Deal with an ampersand in the stream. @throws IOException thrown if an unknown entity is encountered
core/src/main/java/org/owasp/dependencycheck/xml/XmlInputStream.java:150
↓ 1 callers
Method
readCweData
Reads the CWE data from the array of files. @param files the array of files to parse @return a map of the CWE data
core/src/main/java/org/owasp/dependencycheck/data/cwe/App.java:79
↓ 1 callers
Method
readDebugRawData
Duplicates {@link PE#readDebugRawData(PE, DataEntry, IDataReader)} since it is private. @see PE#readDebugRawData(PE, DataEntry, IDataReader)
core/src/main/java/org/owasp/dependencycheck/utils/PEParser.java:108
↓ 1 callers
Method
readDirectoryBuildProps
(File directoryProps)
core/src/main/java/org/owasp/dependencycheck/analyzer/MSBuildProjectAnalyzer.java:315
↓ 1 callers
Method
readIntoPushBack
Might not actually push back anything but usually will. @return true if at end-of-file @throws IOException thrown if there is an IO exception in the
core/src/main/java/org/owasp/dependencycheck/xml/XmlInputStream.java:119
↓ 1 callers
Method
readLockFile
Reads the first line from the lock file and returns the results as a string. @return the first line from the lock file; or null if the contents could
core/src/main/java/org/owasp/dependencycheck/utils/WriteLock.java:276
↓ 1 callers
Method
references
()
core/src/main/java/org/owasp/dependencycheck/analyzer/RetireJsAnalyzer.java:463
↓ 1 callers
Method
releaseResources
Releases the resources used by CveDB.
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:331
↓ 1 callers
Method
reloadProperties
Used within the unit tests to reload the database properties. @return the database properties
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:448
↓ 1 callers
Method
reloadSettings
()
cli/src/test/java/org/owasp/dependencycheck/BaseTest.java:58
↓ 1 callers
Method
removeDuplicativeEntriesFromJar
Removes duplicate entries identified that are contained within JAR files. These occasionally crop up due to POM entries or other types of files (such
core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java:441
↓ 1 callers
Method
removeJreEntries
Removes any CPE entries for the JDK/JRE unless the filename ends with rt.jar @param dependency the dependency to remove JRE CPEs from
core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java:218
↓ 1 callers
Method
removeSpuriousCPE
(Dependency dependency)
core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java:166
↓ 1 callers
Method
removeVulnerability
Removes the given vulnerability from the list. @param v the vulnerability to remove
core/src/main/java/org/owasp/dependencycheck/dependency/Dependency.java:773
↓ 1 callers
Method
removeVulnerableSoftware
Removes the specified vulnerableSoftware from the collection. @param vulnerableSoftware a collection of vulnerable software to be removed
core/src/main/java/org/owasp/dependencycheck/dependency/Vulnerability.java:307
↓ 1 callers
Method
removeWrongVersionMatches
Removes CPE matches for the wrong version of a dependency. Currently, this only covers Axis 1 & 2. @param dependency the dependency to analyze
core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java:347
↓ 1 callers
Method
replaceOrAddVulnerability
Evaluates if the vulnerability is already present; if it is the vulnerability is not added. @param dependency a reference to the dependency being ana
core/src/main/java/org/owasp/dependencycheck/analyzer/NvdCveAnalyzer.java:132
↓ 1 callers
Method
replaceOrAddVulnerability
Evaluates if the vulnerability is already present; if it is the vulnerability is not added. @param dependency a reference to the dependency being ana
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractNpmAnalyzer.java:509
↓ 1 callers
Method
requestDelay
Delays each request (thread) by the configured amount of seconds, if the configuration is present.
core/src/main/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzer.java:213
↓ 1 callers
Method
requestReports
Batch request component-reports for all dependencies. @param dependencies the collection of dependencies @return the map of dependency to OSS Index's
core/src/main/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzer.java:248
↓ 1 callers
Method
reset
Resets the Vulnerable Software Builder to a clean state.
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:80
← previous
next →
1,301–1,400 of 3,473, ranked by callers