Skip to content
This repository has been archived by the owner on Jan 27, 2024. It is now read-only.
/ docker-owasp-dependency-check Public archive

Provides OWASP Dependency-Check app with pre-downloaded NVD/CVE updates

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tgagor/docker-owasp-dependency-check

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
.github/workflows
.github/workflows
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

tgagor/owasp-dependency-check

If you need more information about this tool, please check here: https://owasp.org/www-project-dependency-check/

This image contains application and runtime environment that allows to run tests in CI/CD pipeline or standalone in your project.

How to run

Let say your code is in current directory in code dir and you want to place report in result directory, then execution will look like below:

docker run -ti --rm \
    -v $(pwd)/code:/code:ro \
    -v $(pwd)/result:/report \
    tgagor/owasp-dependency-check \
    --format HTML --project dummy --scan /code --out /report

As example parameters above are set by default in CMD, it's simplest way to call it is:

docker run -ti --rm \
    -v $(pwd)/code:/code:ro \
    -v $(pwd)/result:/report \
    tgagor/owasp-dependency-check

TODO

  • run it as unprivileged allowing to change UID/GID

About

Provides OWASP Dependency-Check app with pre-downloaded NVD/CVE updates

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

6 tags

Packages

No packages published

Languages