New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ErrorUsing Cli dependency check No documents exist. #415
Comments
First, there is a bug in 1.3.2 that was discovered shortly after its release (one of those bugs where it works on my system) - I will be releasing 1.3.3 shortly. Second, are you behind a proxy? You may need to configure the proxy for dependency-check to be able to reach out to the Internet. See http://jeremylong.github.io/DependencyCheck/data/index.html. Best Regards, Jeremy |
Thank you for answering. I am behind a proxy indeed, actually the exit I put was with proxy parameters. I used something like this: Am I using correctly? This was the exit: Exception in thread "main" java.util.NoSuchElementException Is it because of the bug? Best Regards |
I just realized you ran this with sudo - my guess is there is a permission problem with accessing the database directory. By default the data directory for the CLI would be a sibling of the bin and repo directory; that directory must exist and allow read/write. You can change the default data directory using the --data property. Let me know if that helps? --Jeremy |
Sorry Jeremy, you mean change the directory data (with --data ) instead of....? Which is the default data directory for the CLI? The exit now is: INFO - Checking for updates Unable to continue dependency-check analysis. Thank you so much. |
When you unzip the CLI you should have the following folders: dependency-check When you run the tool the first time, it creates a dependency-check First thing to try is to delete the data folder and re-run dependency-check with the correct proxy settings. If that fails, double check that the data folder is created and is writtable. If you need to you can specify a different data directory to point to a folder that you setup with the correct permissions: dependency-check.sh --data /some/data/directory ... |
Hi! It doesnt work, I think is not about permissions problem but maybe I am wrong. Perhaps the problem is because of the proxy, the main error appears this way: org.owasp.dependencycheck.exception.NoDataException: No documents exist Thanks and Regards. G |
If the DB file is being created then it isn't a permissions issue. The Checking for updates If you do not see that, the issue is definately with the proxy. Just to --Jeremy On Wed, Dec 16, 2015 at 6:22 AM, gonzaloFer notifications@github.com
|
Hi, DEBUG - I dont know if can help to solve this problem. Thanks. |
Here is what is going on.
My best suggestions would be to hook up something like Wireshark and see what is actually going across the wire. My guess is there is something misconfigured with the proxy. See the Proxy Configuration section on the dependency-check Maven documentation site. Jeremy |
Have you been able to resolve your issue? |
If you continue to have issues with the plugin, please open a new ticket as I believe this issue has been resolved. |
Hi, After i did as wrote on :- http://jeremylong.github.io/DependencyCheck/data/mirrornvd.html I am facing this issue : - [root@gitlabserver neeraj]# sh dep-check-date.sh "NVD" "11/28/2016" --project virmani -s "/tmp/neeraj/my_code" With NoUpdate :- [root@gitlabserver neeraj]# sh dep-check-date.sh "NVD" "11/28/2016" --project virmani -s "/tmp/neeraj/my_code" --noupdate Unable to continue dependency-check analysis. ========== Thanks, |
Not sure what is in dep-check-date.sh. Based on googling the error message "URI has an authority component" I'm guessing that the URL you are providing is not valid. |
The Data folder should have some old database from any previous run to resolve the issue of " No documents exist" For URI :- there has to be an extra / in the file , ie --cveUrl20Modified file://NVD/2016-11-28/nvdcve-2.0-Modified.xml.gz INCORRECT Thanks, |
so can this issue be closed? --Jeremy |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Hi!
I am getting this error after execute comand line tool:
dic 04, 2015 12:42:49 PM org.owasp.dependencycheck.Engine doUpdates
INFORMACIÓN: Checking for updates
dic 04, 2015 12:42:50 PM org.owasp.dependencycheck.data.update.NvdCveUpdater update
ADVERTENCIA: Unable to download the NVD CVE data; the results may not include the most recent CPE/CVEs from the NVD.
dic 04, 2015 12:42:51 PM org.owasp.dependencycheck.Engine doUpdates
INFORMACIÓN: Check for updates complete
dic 04, 2015 12:42:52 PM org.owasp.dependencycheck.Engine analyzeDependencies
GRAVE: No documents exist
And also getting these messages en .log file:
.
.
.
<errors start here!!>:
2015-12-04 13:09:24,953 org.owasp.dependencycheck.Engine:325
ERROR - No documents exist
Unable to continue dependency-check analysis.
2015-12-04 13:09:24,956 org.owasp.dependencycheck.Engine:326
DEBUG -
org.owasp.dependencycheck.exception.NoDataException: No documents exist
at org.owasp.dependencycheck.Engine.ensureDataExists(Engine.java:497) ~[dependency-check-core-1.3.2.jar:1.3.2]
at org.owasp.dependencycheck.Engine.analyzeDependencies(Engine.java:323) ~[dependency-check-core-1.3.2.jar:1.3.2]
at org.owasp.dependencycheck.App.runScan(App.java:201) [dependency-check-cli-1.3.2.jar:1.3.2]
at org.owasp.dependencycheck.App.run(App.java:123) [dependency-check-cli-1.3.2.jar:1.3.2]
at org.owasp.dependencycheck.App.main(App.java:64) [dependency-check-cli-1.3.2.jar:1.3.2]
2015-12-04 13:09:25,020 org.owasp.dependencycheck.data.nvdcve.CveDB:83
DEBUG - Database dialect: H2
2015-12-04 13:09:25,148 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Initializing Velocity, Calling init()...
2015-12-04 13:09:25,148 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Starting Apache Velocity v1.7 (compiled: 2010-11-19 12:14:37)
2015-12-04 13:09:25,148 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Default Properties File: org/apache/velocity/runtime/defaults/velocity.properties
2015-12-04 13:09:25,149 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Trying to use logger class org.owasp.dependencycheck.reporting.VelocityLoggerRedirect
2015-12-04 13:09:25,149 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Using logger class org.owasp.dependencycheck.reporting.VelocityLoggerRedirect
2015-12-04 13:09:25,151 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - ResourceLoader instantiated: org.apache.velocity.runtime.resource.loader.FileResourceLoader
2015-12-04 13:09:25,152 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Do unicode file recognition: false
2015-12-04 13:09:25,152 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - FileResourceLoader : adding path '.'
2015-12-04 13:09:25,157 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - ResourceCache: initialized (class org.apache.velocity.runtime.resource.ResourceCacheImpl) with class java.util.Collections$SynchronizedMap cache map.
2015-12-04 13:09:25,158 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Stop
2015-12-04 13:09:25,159 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Define
2015-12-04 13:09:25,159 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Break
2015-12-04 13:09:25,160 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Evaluate
2015-12-04 13:09:25,160 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Literal
2015-12-04 13:09:25,161 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Macro
2015-12-04 13:09:25,162 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Parse
2015-12-04 13:09:25,162 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Include
2015-12-04 13:09:25,163 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Loaded System Directive: org.apache.velocity.runtime.directive.Foreach
2015-12-04 13:09:25,179 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Created '20' parsers.
2015-12-04 13:09:25,182 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Velocimacro : "velocimacro.library" is not set. Trying default library: VM_global_library.vm
2015-12-04 13:09:25,182 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Velocimacro : Default library not found.
2015-12-04 13:09:25,182 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Velocimacro : allowInline = true : VMs can be defined inline in templates
2015-12-04 13:09:25,182 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Velocimacro : allowInlineToOverride = false : VMs defined inline may NOT replace previous VM definitions
2015-12-04 13:09:25,182 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Velocimacro : allowInlineLocal = false : VMs defined inline will be global in scope if allowed.
2015-12-04 13:09:25,182 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Velocimacro : autoload off : VM system will not automatically reload global library macros
2015-12-04 13:09:25,213 org.owasp.dependencycheck.data.nvdcve.CveDB:163
DEBUG - Entering finalize
2015-12-04 13:09:25,213 org.owasp.dependencycheck.data.nvdcve.CveDB:163
DEBUG - Entering finalize
2015-12-04 13:09:25,300 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Null reference [template 'templates/HtmlReport.vsl', line 635, column 46] : $cpeSort cannot be resolved.
2015-12-04 13:09:25,300 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Null reference [template 'templates/HtmlReport.vsl', line 635, column 46] : $cpeSort cannot be resolved.
2015-12-04 13:09:25,301 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
DEBUG - Null reference [template 'templates/HtmlReport.vsl', line 635, column 46] : $cpeSort cannot be resolved.
2015-12-04 13:09:25,302 org.owasp.dependencycheck.reporting.VelocityLoggerRedirect:68
I am behind a proxy and I added the parameters, could you help me? Or where can I watch for checking examples. Thank you in advance.
Regards,
Gonzalo
The text was updated successfully, but these errors were encountered: