|
34 | 34 | import org.apache.maven.doxia.sink.Sink; |
35 | 35 | import org.apache.maven.execution.MavenSession; |
36 | 36 | import org.apache.maven.model.License; |
| 37 | +import org.apache.maven.model.Plugin; |
37 | 38 | import org.apache.maven.plugin.AbstractMojo; |
38 | 39 | import org.apache.maven.plugin.MojoExecution; |
39 | 40 | import org.apache.maven.plugin.MojoExecutionException; |
|
98 | 99 | import org.owasp.dependencycheck.xml.pom.Model; |
99 | 100 | import org.owasp.dependencycheck.xml.pom.PomUtils; |
100 | 101 |
|
| 102 | +import javax.inject.Inject; |
101 | 103 | import java.io.File; |
102 | 104 | import java.io.IOException; |
103 | 105 | import java.io.InputStream; |
@@ -1546,6 +1548,22 @@ protected Set<Artifact> resolveArtifactDependencies(final org.eclipse.aether.art |
1546 | 1548 | collectRequest.setRoot(new org.eclipse.aether.graph.Dependency(rootArtifact, null)); |
1547 | 1549 | collectRequest.setRepositories(project.getRemoteProjectRepositories()); |
1548 | 1550 |
|
| 1551 | + final Plugin projectPlugin = project.getPlugin(rootArtifact.getGroupId() + ":" + rootArtifact.getArtifactId()); |
| 1552 | + |
| 1553 | + if (projectPlugin != null) { |
| 1554 | + for (org.apache.maven.model.Dependency dep : projectPlugin.getDependencies()) { |
| 1555 | + final org.eclipse.aether.graph.Dependency aetherDep = new org.eclipse.aether.graph.Dependency( |
| 1556 | + new org.eclipse.aether.artifact.DefaultArtifact( |
| 1557 | + dep.getGroupId(), |
| 1558 | + dep.getArtifactId(), |
| 1559 | + null, |
| 1560 | + "jar", |
| 1561 | + dep.getVersion()), |
| 1562 | + dep.getScope()); |
| 1563 | + collectRequest.addDependency(aetherDep); |
| 1564 | + } |
| 1565 | + } |
| 1566 | + |
1549 | 1567 | final DependencyResult dependencyResult = repoSystem.resolveDependencies( |
1550 | 1568 | session.getRepositorySession(), new DependencyRequest(collectRequest, null)); |
1551 | 1569 |
|
|
0 commit comments