Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Database schema does not match this version of dependency-check #804

Closed
elrond30 opened this issue Jul 14, 2017 · 6 comments
Closed

Database schema does not match this version of dependency-check #804

elrond30 opened this issue Jul 14, 2017 · 6 comments
Labels
question

Comments

@elrond30
Copy link

Hello,

I'm writting al de CVE details in a MySQL database. I need to add a colunm to "vulnerability" table to have a timestamp of when each vulnerability was inserted. When I add this colunm to the table, in the first execution of the job (update or analisys) i have the error: "Database schema does not match this version of dependency-check", but if I retry the build of the job, it is success. It is possible to the plugin to not to validate the BBDD schema?

I'm ussing the script "initialize_mysql.sql" to create de database.

Thanks & best regards
@jeremylong
Copy link
Owner

In addition to the initialize script you also need to run: https://github.com/jeremylong/DependencyCheck/blob/master/dependency-check-core/src/main/resources/data/upgrade_mysql_2.9.sql

Dependency-check does not actually validate the schema, rather it looks to make sure the version number in the properties table is correct.

@elrond30
Copy link
Author

Thank you so much, it works fine.
Best regards

@krulls
Copy link

krulls commented Jun 5, 2018

@jeremylong : Can you point me to the documentation for setting up a database which mirrors the NVE data? I found https://github.com/jeremylong/DependencyCheck/tree/master/core/src/main/resources/data which seems to be the successor of the aforementioned link. But I wonder how, after initiating a database, the data is getting updated? I am working with the Jenkins OWASP dependency check plugin and want to switch from local h2 file based DB to a central DB.

@krulls
Copy link

krulls commented Jun 5, 2018

After looking through the code I might be aware now: There is a "doUpdates" method in the main Engine class (here). This seems to be responsible for updates called with the Jenkins build step
image. So, in Jenkins: configuring the database in the global configuration and creating a job that regularly runs the mentioned build step will be sufficient. Can you confirm?

@jeremylong
Copy link
Owner

@krulls - I highly recommend not adding questions to a closed ticket as they can easily get missed. That being said yes that should be sufficient. Just make sure you run the update at least once every seven days.

It is highly recommended that Jenkins users setup a centralized database. Note that the initial update of a centralized server can take a VERY long time - I haven't had time to work on performance improvements for this yet. However, this only impacts the initial upload. The published info on using a centralized database can be found on the gh-pages site:

https://jeremylong.github.io/DependencyCheck/data/database.html

This was referenced Sep 11, 2018
Closed
Closed
@lock
Copy link

lock bot commented Sep 27, 2018

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

@lock lock bot locked and limited conversation to collaborators Sep 27, 2018
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jeremylong @krulls @elrond30