From 43a7cec4407f21883c7684f1e8af1fecfcd21489 Mon Sep 17 00:00:00 2001
From: Mattrixwv <m_ellison@ymail.com>
Date: Sat, 30 Jul 2022 15:56:44 -0400
Subject: [PATCH] Added sonarqube dependency check

---
 .gitignore         |  2 ++
 .vscode/tasks.json | 29 ++++++++++++++++++-----------
 pom.xml            | 37 +++++++++++++++++++++++++++++++------
 3 files changed, 51 insertions(+), 17 deletions(-)

diff --git a/.gitignore b/.gitignore
index ca9b71c..346645e 100644
--- a/.gitignore
+++ b/.gitignore
@@ -5,3 +5,5 @@ target/
 .settings/
 .classpath
 .project
+sonarBuild.sh
+sonarBuild.ps1
diff --git a/.vscode/tasks.json b/.vscode/tasks.json
index bdf6141..3ab95aa 100644
--- a/.vscode/tasks.json
+++ b/.vscode/tasks.json
@@ -16,22 +16,29 @@
 			"group": "test"
 		},
 		{
-			"label": "sonarqube build",
+			"label": "sonarqube build (Windows)",
 			"group": "build",
 			"type": "shell",
-			"command": "mvn",
-			"args": [
-				"clean",
-				"verify",
-				"sonar:sonar",
-				"-D'sonar.projectKey=mattrixwv_cipherstreamjava_AYGcdy79opaC7KAbzMEs'",
-				"-D'sonar.host.url=http://192.168.1.4:9000'",
-				"-D'sonar.login=sqp_4f0470fd456027ec97025bf1793358c54f4e7e03'"
-			],
+			"command": "./sonarBuild.ps1",
 			"presentation": {
 				"echo": true,
 				"reveal": "always",
-				"focus": false,
+				"focus": true,
+				"panel": "shared",
+				"showReuseMessage": true,
+				"clear": false
+			},
+			"problemMatcher": []
+		},
+		{
+			"label": "sonarqube build (Linux)",
+			"group": "build",
+			"type": "shell",
+			"command": "./sonarBuild.sh",
+			"presentation": {
+				"echo": true,
+				"reveal": "always",
+				"focus": true,
 				"panel": "shared",
 				"showReuseMessage": true,
 				"clear": false
diff --git a/pom.xml b/pom.xml
index 1d4cf51..8652653 100644
--- a/pom.xml
+++ b/pom.xml
@@ -6,29 +6,35 @@
 
 	<groupId>com.mattrixwv</groupId>
 	<artifactId>cipher-stream-java</artifactId>
-	<version>1.0.0</version>
+	<version>1.0.1</version>
 
 	<name>CipherStreamJava</name>
 	<url>http://www.mattrixwv.com</url>
 
 	<properties>
+		<!--Compile-->
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 		<maven.compiler.source>18</maven.compiler.source>
 		<maven.compiler.target>18</maven.compiler.target>
+		<java.version>18</java.version>
+
+		<!--Sonarqube-->
 		<sonar.java.source>18</sonar.java.source>
+		<sonar.dependencyCheck.jsonReportPath>target/dependency-check-report.json</sonar.dependencyCheck.jsonReportPath>
+		<sonar.dependencyCheck.htmlReportPath>target/dependency-check-report.html</sonar.dependencyCheck.htmlReportPath>
 	</properties>
 
 	<dependencies>
 		<dependency>
 			<groupId>mattrixwv</groupId>
 			<artifactId>myClasses</artifactId>
-			<version>1.0.0</version>
+			<version>1.0.1</version>
 		</dependency>
 
 		<dependency>
 			<groupId>com.mattrixwv</groupId>
 			<artifactId>matrix</artifactId>
-			<version>1.0.0</version>
+			<version>1.0.1</version>
 		</dependency>
 
 		<dependency>
@@ -41,7 +47,7 @@
 		<dependency>
 			<groupId>org.junit.jupiter</groupId>
 			<artifactId>junit-jupiter-api</artifactId>
-			<version>5.8.2</version>
+			<version>5.9.0</version>
 			<scope>test</scope>
 		</dependency>
 	</dependencies>
@@ -117,7 +123,7 @@
 					<rulesUri>file://${session.executionRootDirectory}/version-rules.xml</rulesUri>
 				</configuration>
 			</plugin>
-			<!--Sonar-->
+			<!--Sonarqube-->
 			<plugin>
 				<groupId>org.sonarsource.scanner.maven</groupId>
 				<artifactId>sonar-maven-plugin</artifactId>
@@ -136,13 +142,32 @@
 					</execution>
 					<execution>
 						<id>jacoco-site</id>
-						<phase>package</phase>
+						<phase>verify</phase>
 						<goals>
 							<goal>report</goal>
 						</goals>
 					</execution>
 				</executions>
 			</plugin>
+			<plugin>
+				<groupId>org.owasp</groupId>
+				<artifactId>dependency-check-maven</artifactId>
+				<version>7.1.1</version>
+				<executions>
+					<execution>
+						<phase>verify</phase>
+						<goals>
+							<goal>check</goal>
+						</goals>
+					</execution>
+				</executions>
+				<configuration>
+					<formats>
+						<format>json</format>
+						<format>html</format>
+					</formats>
+				</configuration>
+			</plugin>
 		</plugins>
 	</build>
 </project>