SONAR-15962 Remove check dependency github action workflow

.github/renovate.json

@@ -12,7 +12,6 @@
     "io.spring.dependency-management",
     "com.jfrog.artifactory",
     "org.ajoberstar.grgit",
-    "com.github.ben-manes.versions",
     "com.bmuschko.docker-remote-api",
     "com.github.hierynomus.license",
     "com.github.hierynomus.license-report",

README.md

@@ -71,8 +71,6 @@ Then open the root file `build.gradle` as a project in Intellij or Eclipse.
 | ./gradlew command | Description |
 |---|---|
 | `dependencies`| list dependencies |
-| `dependencyCheckAnalyze` | list vulnerable dependencies |
-| `dependencyUpdates` | list the dependencies that could be updated |
 | `licenseFormat --rerun-tasks` | fix source headers by applying HEADER.txt |
 | `wrapper --gradle-version 5.2.1` | upgrade wrapper |
 

build.gradle

@@ -2,7 +2,6 @@ import groovy.json.JsonOutput
 
 plugins {
   // Ordered alphabeticly
-  id 'com.github.ben-manes.versions' version '0.39.0'
   id 'com.github.hierynomus.license' version '0.15.0'
   id "com.github.hierynomus.license-report" version "0.15.0" apply false
   id 'com.github.johnrengelman.shadow' version '5.2.0' apply false
@@ -618,27 +617,6 @@ subprojects {
   }
 }
 
-// https://github.com/ben-manes/gradle-versions-plugin
-apply plugin: 'com.github.ben-manes.versions'
-dependencyUpdates {
-  rejectVersionIf {
-    // Exclude dev versions from the list of dependency upgrades, for
-    // example to replace:
-    //   org.slf4j:log4j-over-slf4j [1.7.25 -> 1.8.0-beta4]
-    // by
-    //   org.slf4j:log4j-over-slf4j [1.7.25 -> 1.7.26]
-    boolean rejected = ['alpha', 'beta', 'rc', 'cr', 'm', 'preview', 'jre12'].any { qualifier ->
-      it.candidate.version ==~ /(?i).*[.-]${qualifier}[.\d-]*/
-    }
-
-    // Exclude upgrades on new major versions :
-    //   com.hazelcast:hazelcast [3.12.3 -> 4.0.0]
-    rejected |= !it.candidate.version.substring(0, 2).equals(it.currentVersion.substring(0, 2))
-
-    rejected
-  }
-}
-
 gradle.projectsEvaluated { gradle ->
   // yarn_run tasks can't all run in parallel without random issues
   // this script ensure all yarn_run tasks run sequentially

server/sonar-docs/build.gradle

@@ -100,15 +100,6 @@ task "yarn_validate-ci"(type: Exec) {
   commandLine osAdaptiveCommand(['npm', 'run', 'validate-ci'])
 }
 
-// Check for known vulnerabilities
-task dependency_audit(type: Exec) {
-  inputs.file('package.json')
-  outputs.cacheIf { false }
-  ignoreExitValue = true
-
-  commandLine osAdaptiveCommand(['npm', 'run', 'audit-ci'])
-}
-
 task zip(type: Zip) {
   def archiveDir = "$version"
   duplicatesStrategy DuplicatesStrategy.EXCLUDE

server/sonar-docs/package.json

@@ -72,8 +72,7 @@
     "ts-check": "tsc --noEmit",
     "validate": "yarn lint && yarn ts-check && yarn format-check && yarn test",
     "validate-ci": "yarn install --immutable && yarn test --ci",
-    "check-ci": "yarn install --immutable && yarn ts-check && yarn format-check",
-    "audit-ci": "yarn npm audit --environment production --severity high"
+    "check-ci": "yarn install --immutable && yarn ts-check && yarn format-check"
   },
   "prettier": {
     "jsxBracketSameLine": true,

server/sonar-web/build.gradle

@@ -67,15 +67,6 @@ task "yarn_check-ci"(type: Exec) {
   commandLine osAdaptiveCommand(['npm', 'run', 'check-ci'])
 }
 
-// Check for known vulnerabilities
-task dependency_audit(type: Exec) {
-  inputs.file('package.json')
-  outputs.cacheIf { false }
-  ignoreExitValue = true
-  
-  commandLine osAdaptiveCommand(['npm', 'run', 'audit-ci'])
-}
-
 def sources = fileTree(dir: "src") + fileTree(dir: "scripts") + fileTree(dir: "config") + fileTree(dir: "__mocks__")
 
 task licenseCheckWeb(type: com.hierynomus.gradle.license.tasks.LicenseCheck) {

server/sonar-web/package.json

@@ -139,8 +139,7 @@
     "validate": "yarn lint && yarn ts-check && yarn format-check && yarn test",
     "validate-ci": "yarn install --immutable && yarn test --coverage --ci",
     "check-ci": "yarn install --immutable && yarn ts-check && yarn format-check",
-    "precommit": "yarn ts-check && lint-staged",
-    "audit-ci": "yarn npm audit --environment production --severity high"
+    "precommit": "yarn ts-check && lint-staged"
   },
   "engines": {
     "node": ">=8"