Adding NVD api key to fix CVEs scanning issue

tavv94 · tavv94 · commit 4cb16a39e06e · 2025-08-13T11:10:32.000+07:00
diff --git a/.github/workflows/cve-scanning-gradle.yml b/.github/workflows/cve-scanning-gradle.yml
@@ -23,5 +23,4 @@ jobs:
       - name: Build with Gradle
         run: ./gradlew build
       - name: CVEs
-        run: ./gradlew dependencyCheckAggregate
-
+        run: ./gradlew dependencyCheckAggregate -DnvdApiKey=${{ secrets.NVD_API_KEY }} -DnvdApiDelay=5000
diff --git a/build.gradle b/build.gradle
@@ -1,6 +1,6 @@
 plugins {
     id "io.github.gradle-nexus.publish-plugin" version "1.3.0"
-    id "org.owasp.dependencycheck" version "9.0.9"
+    id "org.owasp.dependencycheck" version "12.1.3"
 }
 
 ext.projectVersion = '3.2.0-SNAPSHOT'

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`plugins {`
`2`	`2`	`id "io.github.gradle-nexus.publish-plugin" version "1.3.0"`
`3`		`- id "org.owasp.dependencycheck" version "9.0.9"`
	`3`	`+ id "org.owasp.dependencycheck" version "12.1.3"`
`4`	`4`	`}`
`5`	`5`
`6`	`6`	`ext.projectVersion = '3.2.0-SNAPSHOT'`