The GitHub Actions job "Java CI with Gradle" on ofbiz-framework.git has succeeded. Run started by GitHub user asfgit (triggered by asfgit).
Head commit for run: 6d9bd037a47035dfbc40040cfedb6277adb1a5eb / Jacques Le Roux <[email protected]> Improved: Abandon the Gradle Owasp dependencycheck task (OFBIZ-13121) We have abandoned this feature for years as it was no longer usable (too much false positive in large numbers). https://cwiki.apache.org/confluence/display/OFBIZ/About+OWASP+Dependency+Check The last time I tried to use it was after the last commit for https://issues.apache.org/jira/browse/OFBIZ-10700 http://svn.apache.org/viewvc/ofbiz/ofbiz-framework/trunk/build.gradle?r1=1854818&r2=1854817&pathrev=1854818 I just tried and got this: C:\projectsASF\Git\ofbiz-framework>gradlew -PenableOwasp dependencyCheckAnalyze Starting a Gradle Daemon (subsequent builds will be faster) [...] > Task :dependencyCheckAnalyze Verifying dependencies for project ofbiz Checking for updates and analyzing dependencies for vulnerabilities An NVD API Key was not provided - it is highly recommended to use an NVD API key as the update can take a VERY long time without an API Key Actually nothing happens in a reasonable time and I bet it would be mostly unusable. You though may try to follow the NVD API key way, whatever it is. I forgot to remove this information in the main README files (actually in all OFBiz versions supported). You see the README trunk version GH repo. Thanks: Sumesh Acharya for his question on user ML Report URL: https://github.com/apache/ofbiz-framework/actions/runs/9658958441 With regards, GitHub Actions via GitBox
