-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SEVERE: Region [POM] Problem loading keys for file POM #2166
Comments
Seeing the same thing, also with ant dependency-check 5.2.1 |
Same here with dependency-check 5.2.2. The error affects the result! In my case, the report is missing the vulnerabilities for jetty-client-9.3.11.v20160721.jar (CVE-2018-12545, CVE-2019-1024, and CVE-2019-10247). Workaround: Removing the local copy of the NVD (directly from file system or via dependency-check-purge) avoids the error for the next run of the dependency-check. |
For now - try disabling these two caches: <dependency-check
centralAnalyzerUseCache="false"
nodeAuditAnalyzerUseCache="false">
</dependency-check> |
So I'm not sure what is going on with the classpath in this scenario - but we've added fairly broad error handling that should more gracefully handle this scenario. |
Dear all,
We just noticed that ant-dependency-check CVE 5.2.1 is throwing an exception.
I tried searching but I was not able to land on a possible solution. So I am wondering if this is an issue that is only affecting me or if other have encountered it as well. Below is the exception.
I am running Ant 1.10.6 and the output below is directly from the command line on my machine. The dependency check finishes and and outputs an analysis but it's not clear to me if we can safely ignore the exception or what I might be doing wrong on my side.
Thanks in advance for any guidance,
max
dependency-check] SEVERE: Region [POM] Problem loading keys for file POM
The text was updated successfully, but these errors were encountered: