[CALCITE-3314] CVSS dependency-check-maven fails for calcite-pig, cal…

…cite-piglet, calcite-spark

Never fail the build due to OWASP dependency-check for pig, piglet, and spark modules.

pig/pom.xml

@@ -159,6 +159,14 @@ limitations under the License.
           </execution>
         </executions>
       </plugin>
+      <plugin>
+        <groupId>org.owasp</groupId>
+        <artifactId>dependency-check-maven</artifactId>
+        <configuration>
+          <!-- Never fail the build for this module but still check for vulnerabilities. -->
+          <failBuildOnCVSS>11</failBuildOnCVSS>
+        </configuration>
+      </plugin>
     </plugins>
   </build>
 

piglet/pom.xml

@@ -188,6 +188,17 @@ limitations under the License.
           </execution>
         </executions>
       </plugin>
+      <plugin>
+        <groupId>org.owasp</groupId>
+        <artifactId>dependency-check-maven</artifactId>
+        <configuration>
+          <!-- Never fail the build for this module but still check for vulnerabilities. -->
+          <failBuildOnCVSS>11</failBuildOnCVSS>
+          <!-- Skip system dependencies; otherwise fails to find
+               jdk.tools:jdk.tools:jar:1.8:system dependency. -->
+          <skipSystemScope>true</skipSystemScope>
+        </configuration>
+      </plugin>
     </plugins>
   </build>
 </project>

spark/pom.xml

@@ -158,6 +158,14 @@ limitations under the License.
           </execution>
         </executions>
       </plugin>
+      <plugin>
+        <groupId>org.owasp</groupId>
+        <artifactId>dependency-check-maven</artifactId>
+        <configuration>
+          <!-- Never fail the build for this module but still check for vulnerabilities. -->
+          <failBuildOnCVSS>11</failBuildOnCVSS>
+        </configuration>
+      </plugin>
     </plugins>
   </build>
 </project>