'Check for maven artefact vulnerability
I'm looking for a way to automatically check if specific maven artefact has known security vulnerabilities.
I've seen dependency-check-maven plugin, but that is not what I'm looking for. I need to work with just list of artefact GAVs and check which are OK and which are not.
Basically I'm looking for a tool / service / API / ... to which I can give a GAV and it will tell me if this artefact has a known vulnerability or no.
I know https://mvnrepository.com list CVEs on artefacts - like on https://mvnrepository.com/artifact/example-with-known-vulnerabilities/example-with-known-vulnerabilities/1.4.17 but I hope there is a better way to get this information that parse their pages.
Any ideas how to do this?
Sources
This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.
Source: Stack Overflow
| Solution | Source |
|---|