New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unexpected exception occurred initializing CPE Analyzer (NPE) #2909
Comments
I can't reproduce this with the information given. build.gradle plugins {
id 'java'
id 'org.owasp.dependencycheck' version '6.0.2'
}
dependencies {
compile group: 'org.ow2.asm', name: 'asm-commons', version: '7.2'
}
What OS are you using, can you provide a sample project that exhibits the behavior, can you provide a full log file, etc.? |
It's a manjaro linux system.
I get the error when this library is added. If I remove it, everything works as expected like in your example. |
Ah the fun of dependency conflicts... When I add
So I took a look at the build environment (
Unfortunately - until elastic search and nebula upgrade to using a modern version of Lucene (4.10.4 is ~5 years old) I don't think these plugins are compatible. |
Their has been a new release of the nebula project plugin with updated dependencies. I've tested version 8.0.0 of the nebula plugin with version 6.1.0 of dependency check, and they work fine together. I think the issue can be closed. |
I have same/similar issue with using maven when i upgrade from 6.0.3 to 6.1.3
|
the issue happened for me with the version 6.1.3 but not with the 6.1.2
|
Me too with a similar stack; I guess this is a different issue (no old nebula dependency in the classpath, the elasticsearch dependency is 7.1.1 with lucene 8).
Working like charm with the maven plugin version 6.1.2 but fails like above with 6.1.3. Any more Information I could support you with? |
The NPE already has been reported and fixed in code. It will be included in the 6.1.4 release. |
Describe the bug
Analyze fails with the error
"Unexpected exception occurred initializing CPE Analyzer"
. The reason for this is the following NPE:This happens multiple times for several of different libraries, e.g.:
An unexpected error occurred during analysis of '/home/myUser/.gradle/caches/modules-2/files-2.1/org.ow2.asm/asm-commons/7.2/ca2954e8d92a05bacc28ff465b25c70e0f512497/asm-commons-7.2.jar' (CPE Analyzer): null
Version
The problem occurs using version
6.0.2
of thegradle plugin
.To Reproduce
Steps to reproduce the behavior:
dependencyCheckAnalyze
Expected behavior
No error is thrown and CPE's can be analyzed.
Additional context
Gradle cache has been deleted, but it doesn't solve the problem. Purge and update by the plugin was performed as well without success.
The text was updated successfully, but these errors were encountered: