diff options
| author | Malena Ebert <malena.ebert@sonarsource.com> | 2020-10-02 14:22:58 +0200 |
|---|---|---|
| committer | sonartech <sonartech@sonarsource.com> | 2020-10-02 20:07:42 +0000 |
| commit | a5ba90ff48c5581b34a726b3865761ab3dd9f25a (patch) | |
| tree | 07ad8d4838f9dec67ead4f3a3e7a1f9f08df5316 /build.gradle | |
| parent | e59875122c7b9090f41dc5a0fb7deb87573e4b79 (diff) | |
| download | sonarqube-a5ba90ff48c5581b34a726b3865761ab3dd9f25a.tar.gz sonarqube-a5ba90ff48c5581b34a726b3865761ab3dd9f25a.zip | |
SONAR-13912 Add owasp_check_task to Cirrus CI.
Diffstat (limited to 'build.gradle')
| -rw-r--r-- | build.gradle | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/build.gradle b/build.gradle index 1a25f8b9a29..9ce84e4edb8 100644 --- a/build.gradle +++ b/build.gradle @@ -486,6 +486,11 @@ subprojects { yarnVersion = '1.22.0' download = true } + + // the OWASP tool does not support yarn, and its yarn.lock files, so node modules + // should be explicitly installed (yarn task) before running the audit + // See https://github.com/jeremylong/DependencyCheck/issues/2393 + dependencyCheckAggregate.dependsOn(yarn) } if (official) { |