| Package | Description |
|---|---|
| org.owasp.dependencycheck.analyzer |
Analyzers are used to inspect the identified dependencies, collect Evidence, and process the dependencies.
|
| org.owasp.dependencycheck.dependency |
Contains the core Dependency implementation.
|
| org.owasp.dependencycheck.dependency.naming |
A collection of identifiers for Dependency objects.
|
| org.owasp.dependencycheck.xml.hints |
Contains classes used to parse the hints file to add evidence to dependencies.
|
| Modifier and Type | Method and Description |
|---|---|
protected boolean |
CPEAnalyzer.determineIdentifiers(Dependency dependency,
String vendor,
String product,
Confidence currentConfidence)
Retrieves a list of CPE values from the CveDB based on the vendor and
product passed in.
|
| Modifier and Type | Method and Description |
|---|---|
Confidence |
Evidence.getConfidence()
Get the value of confidence.
|
static Confidence |
Confidence.valueOf(String name)
Returns the enum constant of this type with the specified name.
|
static Confidence[] |
Confidence.values()
Returns an array containing the constants of this enum type, in
the order they are declared.
|
| Modifier and Type | Method and Description |
|---|---|
void |
Dependency.addAsEvidence(String source,
MavenArtifact mavenArtifact,
Confidence confidence)
Adds the Maven artifact as evidence.
|
void |
Evidence.setConfidence(Confidence confidence)
Set the value of confidence.
|
| Constructor and Description |
|---|
Evidence(String source,
String name,
String value,
Confidence confidence)
Creates a new Evidence objects.
|
| Modifier and Type | Method and Description |
|---|---|
Confidence |
CpeIdentifier.getConfidence() |
Confidence |
PurlIdentifier.getConfidence() |
Confidence |
Identifier.getConfidence()
Get the value of confidence.
|
Confidence |
GenericIdentifier.getConfidence()
Get the value of confidence.
|
| Modifier and Type | Method and Description |
|---|---|
void |
CpeIdentifier.setConfidence(Confidence confidence)
Set the value of confidence.
|
void |
PurlIdentifier.setConfidence(Confidence confidence)
Set the value of confidence.
|
void |
Identifier.setConfidence(Confidence confidence)
Set the value of confidence.
|
void |
GenericIdentifier.setConfidence(Confidence confidence)
Set the value of confidence.
|
| Constructor and Description |
|---|
CpeIdentifier(us.springett.parsers.cpe.Cpe cpe,
Confidence confidence)
Constructs a new CPE Identifier from a CPE object with the given
confidence.
|
CpeIdentifier(us.springett.parsers.cpe.Cpe cpe,
String url,
Confidence confidence)
Constructs a new CPE Identifier from a CPE object with the given
confidence.
|
CpeIdentifier(String vendor,
String product,
String version,
Confidence confidence)
Constructs a new CPE Identifier from a CPE object with the given
confidence.
|
GenericIdentifier(String value,
Confidence confidence)
Constructs a new Identifier with the specified data.
|
GenericIdentifier(String value,
String url,
Confidence confidence)
Constructs a new Identifier with the specified data.
|
PurlIdentifier(com.github.packageurl.PackageURL purl,
Confidence confidence)
Constructs a new Package-URL identifier.
|
PurlIdentifier(com.github.packageurl.PackageURL purl,
String url,
Confidence confidence)
Constructs a new Package-URL identifier.
|
PurlIdentifier(String type,
String name,
String version,
Confidence confidence)
Constructs a new Package-URL identifier.
|
PurlIdentifier(String type,
String namespace,
String name,
String version,
Confidence confidence)
Constructs a new Package-URL identifier.
|
| Modifier and Type | Method and Description |
|---|---|
void |
HintRule.addAddProduct(String source,
String name,
String value,
Confidence confidence)
Adds a given product to the list of evidence to add when matched.
|
void |
HintRule.addAddVendor(String source,
String name,
String value,
Confidence confidence)
Adds a given vendor to the list of evidence to add when matched.
|
void |
HintRule.addAddVersion(String source,
String name,
String value,
Confidence confidence)
Adds a given version to the list of evidence to add when matched.
|
void |
HintRule.addGivenProduct(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Adds a given product to the list of evidence to matched.
|
void |
HintRule.addGivenVendor(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Adds a given vendors to the list of evidence to matched.
|
void |
HintRule.addGivenVersion(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Adds a given version to the list of evidence to match.
|
void |
HintRule.addRemoveProduct(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Adds a given product to the list of evidence to remove when matched.
|
void |
HintRule.addRemoveVendor(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Adds a given vendor to the list of evidence to remove when matched.
|
void |
HintRule.addRemoveVersion(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Adds a given version to the list of evidence to remove when matched.
|
| Constructor and Description |
|---|
EvidenceMatcher(String source,
String name,
String value,
boolean regex,
Confidence confidence)
Creates a new EvidenceMatcher objects.
|
Copyright © 2012–2020 OWASP. All rights reserved.