Dependency-check is an SCA tool and it allows a user to run scans on Dependencies which generates reports for known vulnerable components. that we used in our source. This operation can be executed after the build or before deployment on the artifact.

OWASPDV

This operation will install OWASPDC V 8.1.0 tool on the endpoint. You can download other Version from OWASPDC .

Target Properties

Property Name

Property Code

Required

Description

OWASPDC Path

FDOWASPDC_PATH

No

Absolute path to OWASPDC Home folder

(if this value left empty plugin will install V8.1.0 on end point)

Project Properties

Property Name	Property Code	Required	Description
Suppression File Name	`FDOWASPDC_SUPPRESS_FILE`	No	Suppression File Name with Path

Inputs

Input Name	Input Code	Required	Description
Project Source Folder	`FDOWASPDC_INP_PROJECT_LOCATION`	No	Path to the project. If a relative path is given, a path inside of the FD_TEMP_DIR will be assumed.
Additional Arguments	`FDOWASPDC_INP_ADDITIONAL_ARGUMENTS`	No	Additional arguments(ex: ---- enableExperimental)

Outputs

Output Name	Required	Description
`FDOWASPDC_OUT_TOTAL_ISSUE_COUNT`	No	Total issues count
`FDOWASPDC_OUT_TOTAL_CRITICAL_ISSUE_COUNT`	No	Total issues count for Critical
`FDOWASPDC_OUT_TOTAL_HIGH_ISSUE_COUNT`	No	Total issues count for High
`FDOWASPDC_OUT_TOTAL_MEDIUM_ISSUE_COUNT`	No	Total issues count for Medium
`FDOWASPDC_OUT_TOTAL_LOW_ISSUE_COUNT`	No	Total issues count for Low

Artifacts

This operation doesn't produce any artifacts.

Endpoint Selection

This operation will select all available endpoints associated with the Target.

Endpoint Execution

This operation will execute on any one of the selected endpoints and will be random in the determination of which on

FlexDeploy 8.0

runDependencyCheck