[jira] [Resolved] (TIKA-2980) Clean build of v1.22 failed (4 vulnerable components detected)

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[jira] [Resolved] (TIKA-2980) Clean build of v1.22 failed (4 vulnerable components detected)

David Eric Pugh (Jira)

     [ https://issues.apache.org/jira/browse/TIKA-2980?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Tim Allison resolved TIKA-2980.
-------------------------------
    Resolution: Not A Problem

[~johnpitchko] thank you for opening this issue.  Unless we reconfigure our settings around releases, this is bound to happen as new vulnerabilities are discovered _after_ we make releases.

Try adding this flag to the build: -Dossindex.fail=false

If you have a more elegant way of handling this, please reopen this issue for discussion.  Thank you, again!

> Clean build of v1.22 failed (4 vulnerable components detected)
> --------------------------------------------------------------
>
>                 Key: TIKA-2980
>                 URL: https://issues.apache.org/jira/browse/TIKA-2980
>             Project: Tika
>          Issue Type: Bug
>          Components: general
>    Affects Versions: 1.22
>         Environment: macOS Catalina
>            Reporter: John Pitchko
>            Priority: Major
>         Attachments: Screen Shot 2019-11-10 at 11.31.53 PM.png
>
>
> Encountered the following error when running `mvn install` on a clean build:
> {{[ERROR] Failed to execute goal org.sonatype.ossindex.maven:ossindex-maven-plugin:3.0.4:audit (audit-dependencies) on project tika-parsers: Detected 4 vulnerable components:}}



--
This message was sent by Atlassian Jira
(v8.3.4#803005)