From 9606b2abe0713c2eb86ce9a7c6cd95ff4f7cfac8 Mon Sep 17 00:00:00 2001
From: TheSilentCoder <184309164+ThatSilentCoder@users.noreply.github.com>
Date: Fri, 20 Dec 2024 15:17:43 -0500
Subject: [PATCH] issue_887: Added OWASP plugin. First run took about 40
 minutes. Subsequent runs took about 2-4 minutes. Plugin downloads the NVD
 (National Vulnerability Database) the very first time the user runs the
 analyzeDependency command (assuming said user does not already have it cached
 somewhereon their system. Once downloaded, the plugin checks the subprojects
 dependenies against that of the NVD's and creates an HTML report per
 subproject on all the critical dependencies subproject has.

---
 build.gradle | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/build.gradle b/build.gradle
index 21837dd37..73f8a56c1 100644
--- a/build.gradle
+++ b/build.gradle
@@ -7,6 +7,7 @@ plugins {
     id 'application'
     id 'checkstyle'
     id 'com.github.spotbugs' version '6.0.13' apply false
+    id 'org.owasp.dependencycheck' version '11.1.1'
     id 'java'
 }
 
@@ -17,6 +18,7 @@ subprojects {
     apply plugin: "com.github.spotbugs"
     apply plugin: "java"
     apply plugin: "checkstyle"
+    apply plugin: "org.owasp.dependencycheck"
 
     repositories {
         flatDir { dirs "lib" }