notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Want a good monitor light? See my photosAll times are UTC
Ukraine
This referral link gives you 10% off a Fastmail.com account and gives me a discount on my Fastmail account.

Get notified when packages are built

A new feature has been added. FreshPorts already tracks package built by the FreeBSD project. This information is displayed on each port page. You can now get an email when FreshPorts notices a new package is available for something on one of your watch lists. However, you must opt into that. Click on Report Subscriptions on the right, and New Package Notification box, and click on Update.

Finally, under Watch Lists, click on ABI Package Subscriptions to select your ABI (e.g. FreeBSD:14:amd64) & package set (latest/quarterly) combination for a given watch list. This is what FreshPorts will look for.

Port details
owasp-dependency-check Detects publicly disclosed vulnerabilities in project dependencies
3.1.1_1 security on this many watch lists=0 search for ports that depend on this port Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 3.1.1_1Version of this port present on the latest quarterly branch.
There is no maintainer for this port.
Any concerns regarding this port should be directed to the FreeBSD Ports mailing list via ports@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2018-04-01 14:37:40
Last Update: 2024-03-11 09:09:45
Commit Hash: 90e4477
Also Listed In: java
License: APACHE20
WWW:
https://jeremylong.github.io/DependencyCheck
https://www.owasp.org/index.php/OWASP_Dependency_Check
https://jeremylong.github.io/DependencyCheck/dependency-check-cli/
Description:
Dependency-Check is a utility that attempts to detect publicly disclosed vulnerabilities contained within project dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries.
HomepageHomepageHomepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (6 items)
Collapse this list.
  1. bin/owasp-dependency-check
  2. /usr/local/share/java/classes/owasp-dependency-check-3.1.1-jar-with-dependencies.jar
  3. /usr/local/share/licenses/owasp-dependency-check-3.1.1_1/catalog.mk
  4. /usr/local/share/licenses/owasp-dependency-check-3.1.1_1/LICENSE
  5. /usr/local/share/licenses/owasp-dependency-check-3.1.1_1/APACHE20
  6. @dir /var/cache/owasp-dependency-check
Collapse this list.
Dependency lines:
  • owasp-dependency-check>0:security/owasp-dependency-check
To install the port:
cd /usr/ports/security/owasp-dependency-check/ && make install clean
To add the package, run one of these commands:
  • pkg install security/owasp-dependency-check
  • pkg install owasp-dependency-check
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: owasp-dependency-check
Flavors: there is no flavor information for this port.
distinfo:
TIMESTAMP = 1522498032 SHA256 (owasp-dependency-check-3.1.1-maven-repository.tar.gz) = 27d27cfa9659c0c4b03dc311e994570641caa2b5db558731bea2a1904fca31b9 SIZE (owasp-dependency-check-3.1.1-maven-repository.tar.gz) = 110896009

Expand this list (2 items)

Collapse this list.

SHA256 (jeremylong-DependencyCheck-v3.1.1_GH0.tar.gz) = 63c89d2263a5dd01f7cc44e22b1172989192b928ff1b650277ffec13e5d168eb SIZE (jeremylong-DependencyCheck-v3.1.1_GH0.tar.gz) = 70973557

Collapse this list.


Packages (timestamps in pop-ups are UTC):
owasp-dependency-check
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest3.1.1_13.1.1_1-3.1.1_13.1.1_1---
FreeBSD:13:quarterly3.1.1_13.1.1_13.1.1_13.1.1_13.1.1_1-3.1.1_13.1.1_1
FreeBSD:14:latest3.1.1_13.1.1_13.1.1_1-3.1.1_1--3.1.1_1
FreeBSD:14:quarterly3.1.1_13.1.1_1--3.1.1_1-3.1.1_13.1.1_1
FreeBSD:15:latest3.1.1_13.1.1_1n/a-n/a-3.1.1_13.1.1_1
FreeBSD:15:quarterly--n/a-n/a---
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. maven>0 : devel/maven
  2. java : java/openjdk8
Runtime dependencies:
  1. java : java/openjdk8
There are no ports dependent upon this port

Configuration Options:
No options to configure
Options name:
security_owasp-dependency-check
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (1 items)
Collapse this list.
  1. https://codeload.github.com/jeremylong/DependencyCheck/tar.gz/v3.1.1?dummy=/
Collapse this list.

Number of commits found: 10

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
3.1.1_1
11 Mar 2024 09:09:45
commit hash: 90e44770f5509fe68fa14893fb3a16e63224a136commit hash: 90e44770f5509fe68fa14893fb3a16e63224a136commit hash: 90e44770f5509fe68fa14893fb3a16e63224a136commit hash: 90e44770f5509fe68fa14893fb3a16e63224a136 files touched by this commit
Michael Osipov (michaelo) search for other commits by this committer
*/*: properly depend on Maven package

devel/maven and devel/maven39 do not provide mvn(1) from LOCALBASE that
one comes from devel/maven-wrapper instead. Therefore, one should depend
on the package rather than a non-existing executable/script.

Approved by:	jrm (mentor), otis (mentor), vvd
Differential Revision:	https://reviews.freebsd.org/D44229
3.1.1_1
23 Dec 2023 19:03:38
commit hash: 53931427689f284173e57ce1f7a76627820f8e29commit hash: 53931427689f284173e57ce1f7a76627820f8e29commit hash: 53931427689f284173e57ce1f7a76627820f8e29commit hash: 53931427689f284173e57ce1f7a76627820f8e29 files touched by this commit
Muhammad Moinur Rahman (bofh) search for other commits by this committer
security/owasp-dependency-check: Unbreak

- Pet portclippy
07 Sep 2022 21:58:51
commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Remove WWW entries moved into port Makefiles

Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.

This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.

Approved by:		portmgr (tcberner)
3.1.1_1
07 Sep 2022 21:10:59
commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
3.1.1_1
07 Apr 2021 08:09:01
commit hash: cf118ccf875508b9a1c570044c93cfcc82bd455ccommit hash: cf118ccf875508b9a1c570044c93cfcc82bd455ccommit hash: cf118ccf875508b9a1c570044c93cfcc82bd455ccommit hash: cf118ccf875508b9a1c570044c93cfcc82bd455c files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
One more small cleanup, forgotten yesterday.
Reported by:	lwhsu
3.1.1_1
06 Apr 2021 14:31:13
commit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937d files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
all: Remove all other $FreeBSD keywords.
3.1.1_1
06 Apr 2021 14:31:07
commit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344eb files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
Remove # $FreeBSD$ from Makefiles.
3.1.1_1
05 Jul 2020 19:36:32
Revision:541302Original commit files touched by this commit
dbaio search for other commits by this committer
Drop MAINTAINER'ship per maintainer request

devel/hhdate
security/owasp-dependency-check
textproc/kiss-templates
textproc/py-sphinx-hieroglyph

PR:		247788
Submitted by:	andreas.sommer87@googlemail.com
3.1.1_1
26 Nov 2019 21:46:13
Revision:518482Original commit files touched by this commit
jkim search for other commits by this committer
Clean up after java/openjdk6 and java/openjdk6-jre removal

java/openjdk6 support was removed from Mk/bsd.java.mk (r512662) and
java/openjdk6 and java/openjdk6-jre were removed from the ports tree
(r512663).  Now this patch completely removes remaining stuff from the
ports tree.

PR:			241953 (exp-run)
Reviewed by:		glewis
Approved by:		portmgr (antoine)
Differential Revision:	https://reviews.freebsd.org/D22342
3.1.1
01 Apr 2018 14:37:26
Revision:466161Original commit files touched by this commit
pi search for other commits by this committer
New port: security/owasp-dependency-check

Dependency-Check is a utility that attempts to detect publicly disclosed
vulnerabilities contained within project dependencies. It does this by
determining if there is a Common Platform Enumeration (CPE) identifier
for a given dependency. If found, it will generate a report linking to
the associated CVE entries.

WWW: https://github.com/jeremylong/DependencyCheck
WWW: https://www.owasp.org/index.php/OWASP_Dependency_Check
WWW: https://jeremylong.github.io/DependencyCheck/dependency-check-cli/
WWW:
https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html

PR:		226206
Submitted by:	Andreas Sommer <andreas.sommer87@googlemail.com>

Number of commits found: 10