add Artifactory, PMD, CycloneDX BOM, OSV Scanner
This commit is contained in:
parent
3bcfc1366c
commit
d05f00d7cb
13 changed files with 64 additions and 39 deletions
BIN
.osv-scanner/.cache/v1.8.2/osv-scanner_linux_amd64
Executable file
BIN
.osv-scanner/.cache/v1.8.2/osv-scanner_linux_amd64
Executable file
Binary file not shown.
1
.osv-scanner/osv-scanner.version
Normal file
1
.osv-scanner/osv-scanner.version
Normal file
|
|
@ -0,0 +1 @@
|
|||
v1.8.2
|
||||
BIN
.osv-scanner/osv-scanner_linux_amd64
Executable file
BIN
.osv-scanner/osv-scanner_linux_amd64
Executable file
Binary file not shown.
15
build.gradle
15
build.gradle
|
|
@ -4,6 +4,9 @@ plugins {
|
|||
id 'maven-publish'
|
||||
id 'signing'
|
||||
id "io.github.gradle-nexus.publish-plugin" version "2.0.0-rc-1"
|
||||
id "com.jfrog.artifactory" version "5.2.3"
|
||||
id "org.cyclonedx.bom" version "1.8.2"
|
||||
id 'com.fizzpod.osv-scanner' version '3.0.9'
|
||||
}
|
||||
|
||||
wrapper {
|
||||
|
|
@ -27,11 +30,15 @@ ext {
|
|||
}
|
||||
|
||||
subprojects {
|
||||
apply from: rootProject.file('gradle/repositories/maven.gradle')
|
||||
apply from: rootProject.file('gradle/repositories/artifactory.gradle')
|
||||
apply from: rootProject.file('gradle/repositories/forgejo.gradle')
|
||||
apply from: rootProject.file('gradle/compile/java.gradle')
|
||||
apply from: rootProject.file('gradle/test/junit5.gradle')
|
||||
apply from: rootProject.file('gradle/publish/maven.gradle')
|
||||
apply from: rootProject.file('gradle/quality/pmd.gradle')
|
||||
apply from: rootProject.file('gradle/publish/maven.gradle')
|
||||
}
|
||||
apply from: rootProject.file('gradle/publish/sonatype.gradle')
|
||||
apply from: rootProject.file('gradle/publish/forgejo.gradle')
|
||||
apply from: rootProject.file('gradle/quality/cyclonedx.gradle')
|
||||
apply from: rootProject.file('gradle/quality/osv-scanner.gradle')
|
||||
apply from: rootProject.file('gradle/publish/xbib/forgejo.gradle')
|
||||
apply from: rootProject.file('gradle/publish/hbz/artifactory.gradle')
|
||||
//apply from: rootProject.file('gradle/publish/maven-central/sonatype.gradle')
|
||||
|
|
|
|||
27
gradle/publish/hbz/artifactory.gradle
Normal file
27
gradle/publish/hbz/artifactory.gradle
Normal file
|
|
@ -0,0 +1,27 @@
|
|||
if (project.hasProperty('artifactoryUser')) {
|
||||
artifactory {
|
||||
publish {
|
||||
contextUrl = project.property('artifactoryUrl')
|
||||
repository {
|
||||
repoKey = project.property('artifactoryRepoKey')
|
||||
username = project.property('artifactoryUser')
|
||||
password = project.property('artifactoryPassword')
|
||||
}
|
||||
defaults {
|
||||
publications("${project.name}")
|
||||
publishBuildInfo = false
|
||||
publishArtifacts = true
|
||||
publishPom = true
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
if (project.hasProperty("signing.keyId")) {
|
||||
pluginManager.withPlugin('maven-publish') {
|
||||
apply plugin: 'signing'
|
||||
signing {
|
||||
sign publishing.publications."${project.name}"
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
@ -1,27 +0,0 @@
|
|||
apply plugin: 'ivy-publish'
|
||||
|
||||
publishing {
|
||||
repositories {
|
||||
ivy {
|
||||
url = "https://xbib.org/repo"
|
||||
}
|
||||
}
|
||||
publications {
|
||||
ivy(IvyPublication) {
|
||||
from components.java
|
||||
descriptor {
|
||||
license {
|
||||
name = 'The Apache License, Version 2.0'
|
||||
url = 'http://www.apache.org/licenses/LICENSE-2.0.txt'
|
||||
}
|
||||
author {
|
||||
name = 'Jörg Prante'
|
||||
url = 'http://example.com/users/jane'
|
||||
}
|
||||
descriptor.description {
|
||||
text = rootProject.ext.description
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
@ -1,3 +1,11 @@
|
|||
|
||||
if (project.hasProperty("signing.keyId")) {
|
||||
apply plugin: 'signing'
|
||||
signing {
|
||||
sign publishing.publications."${project.name}"
|
||||
}
|
||||
}
|
||||
|
||||
if (project.hasProperty('ossrhUsername') && project.hasProperty('ossrhPassword')) {
|
||||
nexusPublishing {
|
||||
repositories {
|
||||
|
|
@ -42,10 +42,3 @@ publishing {
|
|||
}
|
||||
}
|
||||
}
|
||||
|
||||
if (project.hasProperty("signing.keyId")) {
|
||||
apply plugin: 'signing'
|
||||
signing {
|
||||
sign publishing.publications."${project.name}"
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -2,7 +2,7 @@ cyclonedxBom {
|
|||
includeConfigs = [ 'runtimeClasspath' ]
|
||||
skipConfigs = [ 'compileClasspath', 'testCompileClasspath' ]
|
||||
projectType = "library"
|
||||
schemaVersion = "1.4"
|
||||
schemaVersion = "1.5"
|
||||
destination = file("build/reports")
|
||||
outputName = "bom"
|
||||
outputFormat = "json"
|
||||
|
|
|
|||
6
gradle/quality/osv-scanner.gradle
Normal file
6
gradle/quality/osv-scanner.gradle
Normal file
|
|
@ -0,0 +1,6 @@
|
|||
apply plugin: 'com.fizzpod.osv-scanner'
|
||||
|
||||
osvScanner {
|
||||
format = "json"
|
||||
sbom = rootProject.file('build/reports/bom.json')
|
||||
}
|
||||
5
gradle/repositories/artifactory.gradle
Normal file
5
gradle/repositories/artifactory.gradle
Normal file
|
|
@ -0,0 +1,5 @@
|
|||
repositories {
|
||||
maven {
|
||||
url = 'https://repo.hbz-nrw.de/artifactory/gradle-dev/'
|
||||
}
|
||||
}
|
||||
5
gradle/repositories/forgejo.gradle
Normal file
5
gradle/repositories/forgejo.gradle
Normal file
|
|
@ -0,0 +1,5 @@
|
|||
repositories {
|
||||
maven {
|
||||
url = 'https://xbib.org/api/packages/joerg/maven'
|
||||
}
|
||||
}
|
||||
Loading…
Reference in a new issue