Skip to content
Snippets Groups Projects
Commit b26c67c4 authored by Kiran Patel's avatar Kiran Patel
Browse files

fix: add MAVEN_DEPENDENCY_CHECK_DISABLED variable

parent 1f88138e
No related branches found
No related tags found
No related merge requests found
...@@ -108,6 +108,8 @@ It is bound to the `test` stage, and uses the following variables: ...@@ -108,6 +108,8 @@ It is bound to the `test` stage, and uses the following variables:
| Name | description | default value | | Name | description | default value |
| --------------------- | -------------------------------------- | ----------------- | | --------------------- | -------------------------------------- | ----------------- |
| `MAVEN_DEPENDENCY_CHECK_ARGS` | Maven arguments for Dependency Check job | `org.owasp:dependency-check-maven:check -DretireJsAnalyzerEnabled=false -DassemblyAnalyzerEnabled=false` | | `MAVEN_DEPENDENCY_CHECK_ARGS` | Maven arguments for Dependency Check job | `org.owasp:dependency-check-maven:check -DretireJsAnalyzerEnabled=false -DassemblyAnalyzerEnabled=false` |
| `MAVEN_DEPENDENCY_CHECK_DISABLED` | Set to `true` to disable this job | _none_ |
A Dependency Check is a quite long operation and therefore the job is configured to be ran __manually__ by default. A Dependency Check is a quite long operation and therefore the job is configured to be ran __manually__ by default.
......
...@@ -459,6 +459,9 @@ mvn-dependency-check: ...@@ -459,6 +459,9 @@ mvn-dependency-check:
paths: paths:
- "${MAVEN_PROJECT_DIR}/**/target/dependency-check-report.*" - "${MAVEN_PROJECT_DIR}/**/target/dependency-check-report.*"
rules: rules:
# exclude if disable
- if: '$MAVEN_DEPENDENCY_CHECK_DISABLED == "true"'
when: never
# on schedule: auto # on schedule: auto
- if: '$CI_PIPELINE_SOURCE == "schedule"' - if: '$CI_PIPELINE_SOURCE == "schedule"'
allow_failure: true allow_failure: true
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment