MCPcopy Index your code

hub / github.com/dependency-check/DependencyCheck / functions

Functions3,473 in github.com/dependency-check/DependencyCheck

↓ 2 callersMethodsetSeverity
(String severity)
core/src/main/java/org/owasp/dependencycheck/data/nodeaudit/Advisory.java:249
↓ 2 callersMethodsetSource
Set the value of source. @param source new value of source
core/src/main/java/org/owasp/dependencycheck/dependency/Reference.java:122
↓ 2 callersMethodsetStringValue
Sets the string parameter on a prepared statement from a properties map. @param ps a prepared statement @param i the index of the property @param pro
core/src/main/java/org/owasp/dependencycheck/data/nvdcve/CveDB.java:2299
↓ 2 callersMethodsetTitle
(String title)
core/src/main/java/org/owasp/dependencycheck/data/nodeaudit/Advisory.java:153
↓ 2 callersMethodsetUrl
Set the value of url. @param url new value of url
core/src/main/java/org/owasp/dependencycheck/dependency/Reference.java:104
↓ 2 callersMethodsetVersion
(String version)
core/src/main/java/org/owasp/dependencycheck/data/nodeaudit/Advisory.java:201
↓ 2 callersMethodsetVulnerabilityName
Sets the vulnerability name. @param parentName the parent name @param dependency the dependency @param vulnerability the vulnerability @param nextLin
core/src/main/java/org/owasp/dependencycheck/processing/BundlerAuditProcessor.java:174
↓ 2 callersMethodsetVulnerableVersions
(String vulnerableVersions)
core/src/main/java/org/owasp/dependencycheck/data/nodeaudit/Advisory.java:217
↓ 2 callersMethodsingleItem
(@Nullable List<String> identifiers)
core/src/main/java/org/owasp/dependencycheck/analyzer/RetireJsAnalyzer.java:496
↓ 2 callersMethodsortAdjustedCVSSv3BaseScore
Compute an adjusted CVSSv3 baseScore that ensures that CRITICAL CVSSv3 scores will win over HIGH CVSSv2 and CRITICAL unscored severities to allow for
core/src/main/java/org/owasp/dependencycheck/utils/SeverityUtil.java:167
↓ 2 callersMethodstartAndReadStdoutToString
Workaround 64k limitation of InputStream, redirect stdout to a file that we will read later instead of reading directly stdout from Process's InputStr
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:199
↓ 2 callersMethodtestLock
()
core/src/test/java/org/owasp/dependencycheck/analyzer/NodePackageAnalyzerTest.java:172
↓ 2 callersMethodthrowFatalDatabaseException
Utility method to throw a fatal database exception. @param ex the exception that was caught @param exceptions the exception collection @throws Except
core/src/main/java/org/owasp/dependencycheck/Engine.java:724
↓ 2 callersMethodtoNext
()
core/src/main/java/org/owasp/dependencycheck/utils/Filter.java:80
↓ 2 callersMethodtoString
To string implementation. @return a string representation of the data given and read from the stream.
core/src/main/java/org/owasp/dependencycheck/xml/XmlInputStream.java:232
↓ 2 callersMethodtoString
Returns the CPE 2.3 formatted string. @return the CPE 2.3 formatted string
core/src/main/java/org/owasp/dependencycheck/dependency/naming/CpeIdentifier.java:162
↓ 2 callersMethodtoYearRange
(Settings settings, ZonedDateTime now)
core/src/main/java/org/owasp/dependencycheck/data/update/NvdApiDataSource.java:708
↓ 2 callersMethodtransform
Transform OSS Index component-report to ODC vulnerability. @param report the component report @param source the vulnerability from the report to tran
core/src/main/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzer.java:362
↓ 2 callersMethodtryConfigureProxyCredentials
Add the proxy credentials to the CredentialsProvider and AuthCache instances when proxy-authentication is configured in the settings. @param credentia
utils/src/main/java/org/owasp/dependencycheck/utils/Downloader.java:510
↓ 2 callersMethodtryResolutionOnce
Try resolution of artifacts once, allowing for DependencyResolutionException due to reactor-dependencies not being resolvable. <br> The resolution is
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:3153
↓ 2 callersMethodupdateDependency
Updates the dependency information with the provided assembly data. @param data the assembly data @param dependency the dependency to update
core/src/main/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzer.java:197
↓ 2 callersMethodvectorToCvssV4
Convert a CVSSv4 vector String into a CvssV4 Object. @param source the source of the CVSS data @param type the type of CVSS data (primary or secondar
core/src/main/java/org/owasp/dependencycheck/utils/CvssUtil.java:257
↓ 2 callersMethodwfEdition
(String edition)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:191
↓ 2 callersMethodwfLanguage
(String language)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:186
↓ 2 callersMethodwfOther
(String other)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:166
↓ 2 callersMethodwfProduct
(String product)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:206
↓ 2 callersMethodwfSwEdition
(String swEdition)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:181
↓ 2 callersMethodwfVendor
(String vendor)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:211
↓ 2 callersMethodwfVersion
(String version)
core/src/main/java/org/owasp/dependencycheck/dependency/VulnerableSoftwareBuilder.java:201
↓ 2 callersMethodwrite
Writes the dependency-check report to the given output location. @param outputLocation the path where the reports should be written @param format the
core/src/main/java/org/owasp/dependencycheck/reporting/ReportGenerator.java:318
↓ 1 callersMethodaddAddProduct
Adds a given product to the list of evidence to add when matched. @param source the source of the evidence @param name the name of the evidence @para
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:149
↓ 1 callersMethodaddAddVendor
Adds a given vendor to the list of evidence to add when matched. @param source the source of the evidence @param name the name of the evidence @param
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:191
↓ 1 callersMethodaddAddVersion
Adds a given version to the list of evidence to add when matched. @param source the source of the evidence @param name the name of the evidence @para
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:170
↓ 1 callersMethodaddCriticalityToVulnerability
Adds the criticality to the vulnerability @param parentName the parent name @param vulnerability the vulnerability @param nextLine the line to parse
core/src/main/java/org/owasp/dependencycheck/processing/BundlerAuditProcessor.java:216
↓ 1 callersMethodaddCvssV4Below
Adds the CVSS to the cvssV4Below list. @param cvss the CVSS to add
core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java:372
↓ 1 callersMethodaddDeprecatedOptions
Adds the deprecated command line options to the given options collection. These are split out for purposes of not including them in the help message.
cli/src/main/java/org/owasp/dependencycheck/CliParser.java:574
↓ 1 callersMethodaddDeveloper
Adds a new developer to the list of developers. @param developer the developer to add
core/src/main/java/org/owasp/dependencycheck/xml/pom/Model.java:306
↓ 1 callersMethodaddDisguisedJarsToDependencies
If a zip file was identified as a possible JAR, this method will add the zip to the list of dependencies. @param dependency the zip file @param engin
core/src/main/java/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.java:347
↓ 1 callersMethodaddEvidenceFromVersionFile
Adds evidence from the version file. @param dependency the dependency being analyzed @param type the type of evidence to add @param dependencyFile th
core/src/main/java/org/owasp/dependencycheck/analyzer/RubyGemspecAnalyzer.java:257
↓ 1 callersMethodaddExactMatch
Adds a new CPE to the identifier match collection. @param vs a reference to the vulnerable software @param updateVersion the update version @param co
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:965
↓ 1 callersMethodaddFalseNegativeCPEs
There are some known CPE entries, specifically regarding sun and oracle products due to the acquisition and changes in product names, that based on gi
core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java:382
↓ 1 callersMethodaddFileFilters
Add to a list of {@link IOFileFilter} instances to consult for whether to accept a file for analysis. @param filters one or more file filters to cons
core/src/main/java/org/owasp/dependencycheck/utils/FileFilterBuilder.java:113
↓ 1 callersMethodaddFileTypeAnalyzer
Adds a file type analyzer. This has been added solely to assist in unit testing the Engine. @param fta the file type analyzer to add
core/src/main/java/org/owasp/dependencycheck/Engine.java:1132
↓ 1 callersMethodaddFilename
Adds the filename evidence to the collection. @param filename the filename to add
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:84
↓ 1 callersMethodaddGivenProduct
Adds a given product to the list of evidence to matched. @param source the source of the evidence @param name the name of the evidence @param value t
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:106
↓ 1 callersMethodaddGivenVendor
Adds a given vendors to the list of evidence to matched. @param source the source of the evidence @param name the name of the evidence @param value t
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:128
↓ 1 callersMethodaddGivenVersion
Adds a given version to the list of evidence to match. @param source the source of the evidence @param name the name of the evidence @param value the
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:273
↓ 1 callersMethodaddLicense
Adds a license to the given dependency. @param d a dependency @param license the license
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:1092
↓ 1 callersMethodaddLockFileDartVersionToEngine
(File file, Engine engine, JsonNode rootNode)
core/src/main/java/org/owasp/dependencycheck/analyzer/DartAnalyzer.java:175
↓ 1 callersMethodaddLockFileDependenciesToEngine
(File file, Engine engine, JsonNode rootNode)
core/src/main/java/org/owasp/dependencycheck/analyzer/DartAnalyzer.java:183
↓ 1 callersMethodaddMajorVersionToTerms
(Set<String> majorVersions, Map<String, MutableInt> products)
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:360
↓ 1 callersMethodaddMavenArtifacts
Collect the artifacts from a MavenCentral search result and add them to the list. @param doc The Document received in response to the SHA1 search-requ
core/src/main/java/org/owasp/dependencycheck/data/central/CentralSearch.java:200
↓ 1 callersMethodaddReferenceToVulnerability
Adds a reference to the vulnerability. @param parentName the parent name @param vulnerability the vulnerability @param nextLine the line to parse
core/src/main/java/org/owasp/dependencycheck/processing/BundlerAuditProcessor.java:197
↓ 1 callersMethodaddRemoveProduct
Adds a given product to the list of evidence to remove when matched. @param source the source of the evidence @param name the name of the evidence @p
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:233
↓ 1 callersMethodaddRemoveVendor
Adds a given vendor to the list of evidence to remove when matched. @param source the source of the evidence @param name the name of the evidence @pa
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:213
↓ 1 callersMethodaddRemoveVersion
Adds a given version to the list of evidence to remove when matched. @param source the source of the evidence @param name the name of the evidence @p
core/src/main/java/org/owasp/dependencycheck/xml/hints/HintRule.java:253
↓ 1 callersMethodaddSnapshotReactorDependency
Checks if the current artifact is actually in the reactor projects. If true a virtual dependency is created based on the evidence in the project. @pa
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:2052
↓ 1 callersMethodaddSoftwareIdentifiers
Adds a set of Identifiers to the current list of software identifiers. Only used for testing. @param identifiers A set of Identifiers
core/src/main/java/org/owasp/dependencycheck/dependency/Dependency.java:475
↓ 1 callersMethodaddStringEvidence
Extracts evidence from the package description and adds it to the given evidence collection. @param dependency the dependency being analyzed @param t
core/src/main/java/org/owasp/dependencycheck/analyzer/SwiftPackageManagerAnalyzer.java:222
↓ 1 callersMethodaddSuppressedIdentifier
Adds an identifier to the list of suppressed identifiers. @param identifier an identifier that was suppressed.
core/src/main/java/org/owasp/dependencycheck/dependency/Dependency.java:605
↓ 1 callersMethodaddSuppressedVulnerabilities
Add a list of suppressed vulnerabilities to the collection. @param vulns the list of suppressed vulnerabilities to add
core/src/main/java/org/owasp/dependencycheck/dependency/Dependency.java:1025
↓ 1 callersMethodaddSuppressedVulnerability
Adds a vulnerability to the set of suppressed vulnerabilities. @param vulnerability the vulnerability that was suppressed
core/src/main/java/org/owasp/dependencycheck/dependency/Dependency.java:673
↓ 1 callersMethodaddVersionAndUpdate
Add the given version to the CpeBuilder - this method attempts to parse out the update from the version and correctly set the value in the CPE. @para
core/src/main/java/org/owasp/dependencycheck/analyzer/CPEAnalyzer.java:1103
↓ 1 callersMethodaddYamlDartDependencyToEngine
(JsonNode rootNode, File file, Engine engine)
core/src/main/java/org/owasp/dependencycheck/analyzer/DartAnalyzer.java:225
↓ 1 callersMethodanalyzeCartfileResolvedDependency
Analyzes the Cartfile.resolved and adds the evidence to the dependency. @param cartfileResolved the dependency @param engine a reference to the depen
core/src/main/java/org/owasp/dependencycheck/analyzer/CarthageAnalyzer.java:201
↓ 1 callersMethodanalyzeDependency
Analyzes a given dependency. If the dependency is an archive, such as a WAR or EAR, the contents are extracted, scanned, and added to the list of depe
core/src/main/java/org/owasp/dependencycheck/analyzer/AbstractAnalyzer.java:144
↓ 1 callersMethodanalyzeFileContents
This should gather information from leading docstrings, file comments, and assignments to __version__, __title__, __summary__, __uri__, __url__, __hom
core/src/main/java/org/owasp/dependencycheck/analyzer/PythonPackageAnalyzer.java:237
↓ 1 callersMethodanalyzeFullyQualifiedClassNames
Cycles through the list of class names and places the package levels 0-3 into the provided maps for vendor and product. This is helpful when analyzing
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:1201
↓ 1 callersMethodanalyzeLockFileDependencies
(Dependency lockFileDependency, Engine engine)
core/src/main/java/org/owasp/dependencycheck/analyzer/DartAnalyzer.java:159
↓ 1 callersMethodanalyzePOM
Attempts to find a pom.xml within the JAR file. If found it extracts information and adds it to the evidence. This will attempt to interpolate the str
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:428
↓ 1 callersMethodanalyzePackage
Analyzes the package and package-lock files by extracting dependency information, creating a payload to submit to the npm audit API, submitting the pa
core/src/main/java/org/owasp/dependencycheck/analyzer/NodeAuditAnalyzer.java:173
↓ 1 callersMethodanalyzePackage
Analyzes the package and pnpm lock files by extracting dependency information, creating a payload to submit to the npm audit API, submitting the paylo
core/src/main/java/org/owasp/dependencycheck/analyzer/PnpmAuditAnalyzer.java:263
↓ 1 callersMethodanalyzePackageNames
Analyzes the path information of the classes contained within the JarAnalyzer to try and determine possible vendor or product names. If any are found
core/src/main/java/org/owasp/dependencycheck/analyzer/JarAnalyzer.java:803
↓ 1 callersMethodanalyzePackageWithYarnBerry
Analyzes the package and yarn lock files by calling yarn npm audit and returning the identified advisories. @param dependency a reference to the depe
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:389
↓ 1 callersMethodanalyzePackageWithYarnClassic
Analyzes the package and yarn lock files by extracting dependency information, creating a payload to submit to the npm audit API, submitting the paylo
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:311
↓ 1 callersMethodanalyzePodfileLockDependencies
Analyzes the podfile.lock file to extract evidence for the dependency. @param podfileLock the dependency to analyze @param engine the analysis engine
core/src/main/java/org/owasp/dependencycheck/analyzer/CocoaPodsAnalyzer.java:167
↓ 1 callersMethodanalyzePodspecDependency
Analyzes the podspec and adds the evidence to the dependency. @param dependency the dependency @throws AnalysisException thrown if there is an error
core/src/main/java/org/owasp/dependencycheck/analyzer/CocoaPodsAnalyzer.java:227
↓ 1 callersMethodanalyzeSetVersionCommand
Extracts the version information from the contents. If more then one version is found additional dependencies are added to the dependency list. @para
core/src/main/java/org/owasp/dependencycheck/analyzer/CMakeAnalyzer.java:276
↓ 1 callersMethodanalyzeSpmFileDependency
Analyzes the SPM file and adds the evidence to the dependency. @param dependency the dependency @throws IOException thrown if there is an error analy
core/src/main/java/org/owasp/dependencycheck/analyzer/SwiftPackageManagerAnalyzer.java:157
↓ 1 callersMethodanalyzeSpmResolvedDependencies
Analyzes the Package.resolved file to extract evidence for the dependency. @param spmResolved the dependency to analyze @param engine the analysis en
core/src/main/java/org/owasp/dependencycheck/analyzer/SwiftPackageResolvedAnalyzer.java:155
↓ 1 callersMethodanalyzeSpmResolvedDependenciesV1
Analyzes the version 1 of the Package.resolved file to extract evidence for the dependency. @param spmResolved the dependency to analyze @param engin
core/src/main/java/org/owasp/dependencycheck/analyzer/SwiftPackageResolvedAnalyzer.java:185
↓ 1 callersMethodanalyzeSpmResolvedDependenciesV2And3
Analyzes the versions 2 and 3 of the Package.resolved file to extract evidence for the dependency. @param spmResolved the dependency to analyze @para
core/src/main/java/org/owasp/dependencycheck/analyzer/SwiftPackageResolvedAnalyzer.java:220
↓ 1 callersMethodanalyzeYamlFileDependencies
(Dependency yamlFileDependency, Engine engine)
core/src/main/java/org/owasp/dependencycheck/analyzer/DartAnalyzer.java:127
↓ 1 callersMethodappendTerm
(String term)
core/src/main/java/org/owasp/dependencycheck/data/lucene/AbstractTokenizingFilter.java:98
↓ 1 callersMethodartifactsMatch
Determines if the groupId, artifactId, and version of the Maven dependency and artifact match. @param d the Maven dependency @param a the Maven artif
maven/src/main/java/org/owasp/dependencycheck/maven/BaseDependencyCheckMojo.java:1257
↓ 1 callersMethodasCve
(String url)
core/src/test/java/org/owasp/dependencycheck/data/nvd/ecosystem/UrlEcosystemMapperTest.java:26
↓ 1 callersMethodassertAllBaseSuppressionRulesAreMarkedCorrectly
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzerTest.java:181
↓ 1 callersMethodassertAllHostedSnapshotSuppressionsAreMarkedAsBase
(List<SuppressionRule> baseRules)
core/src/test/java/org/owasp/dependencycheck/analyzer/AbstractSuppressionAnalyzerTest.java:191
↓ 1 callersMethodassertGrokAssembly
()
core/src/test/java/org/owasp/dependencycheck/analyzer/AssemblyAnalyzerTest.java:88
↓ 1 callersMethodassertPermutationSortedEqual
(final Vulnerability[] prev, final Vulnerability[] current, final int[] permutation,
core/src/test/java/org/owasp/dependencycheck/dependency/VulnerabilityTest.java:245
↓ 1 callersMethodawaitPendingClosure
()
core/src/test/java/org/owasp/dependencycheck/analyzer/OssIndexAnalyzerTest.java:315
↓ 1 callersMethodbuildDescription
(String description, org.owasp.dependencycheck.data.knownexploited.json.Vulnerability knownExploit
core/src/main/java/org/owasp/dependencycheck/reporting/ReportTool.java:191
↓ 1 callersMethodbuildIndex
Builds the CPE Lucene Index based off of the data within the CveDB. @param data the CPE data @throws IndexException thrown if there is an issue creat
core/src/main/java/org/owasp/dependencycheck/data/cpe/AbstractMemoryIndex.java:208
↓ 1 callersMethodbuildShortDescription
Builds the short description for the Sarif format. @param d the dependency @param vuln the vulnerability @param knownExploited true if the vulnerabil
core/src/main/java/org/owasp/dependencycheck/reporting/ReportTool.java:168
↓ 1 callersMethodcacheYarnCommandPath
Attempts to determine and cache the path to `yarn`.
core/src/main/java/org/owasp/dependencycheck/analyzer/YarnAuditAnalyzer.java:175
↓ 1 callersMethodcallAnalyzeDependency
Executes the test call against AnalyzeDependency. @param vendor @param product @param version @param expectedCpe @param cpeAnalyzer @param engine @th
core/src/test/java/org/owasp/dependencycheck/analyzer/NpmCPEAnalyzerIT.java:69
↓ 1 callersMethodcallExecuteAnalysis
(final Engine engine)
ant/src/main/java/org/owasp/dependencycheck/taskdefs/Check.java:1510
↓ 1 callersMethodcheckEnabled
Determines if this analyzer is enabled @return <code>true</code> if the analyzer is enabled; otherwise <code>false</code>
core/src/main/java/org/owasp/dependencycheck/analyzer/NexusAnalyzer.java:131
↓ 1 callersMethodcheckEnabled
Determines if this analyzer is enabled. @return <code>true</code> if the analyzer is enabled; otherwise <code>false</code>
core/src/main/java/org/owasp/dependencycheck/analyzer/ArtifactoryAnalyzer.java:117
↓ 1 callersMethodcheckEnabled
Determines if this analyzer is enabled. @return <code>true</code> if the analyzer is enabled; otherwise <code>false</code>
core/src/main/java/org/owasp/dependencycheck/analyzer/CentralAnalyzer.java:149
← previousnext →901–1,000 of 3,473, ranked by callers