From d26ab571540a72c1a8d3b3656c65abd12f8b814c Mon Sep 17 00:00:00 2001
From: Manuel Thalmann <m@nuth.ch>
Date: Tue, 17 Oct 2023 17:07:30 +0200
Subject: [PATCH] Add support for the dependency-check plugin

---
 .gitlab-ci.yml | 2 +-
 app/pom.xml    | 8 ++++++++
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index e2b2dc6..6fd9253 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -39,7 +39,7 @@ check:
   image: markhobson/maven-chrome:jdk-18
   script:
     - *setup-mvn
-    - ./mvnw clean compile
+    - ./mvnw clean compile dependency-check:aggregate
     - ./mvnw sonar:sonar -Dsonar.projectKey=$SONAR_PROJECT -Dsonar.projectName=$SONAR_PROJECT -Dsonar.host.url=$SONAR_URL -Dsonar.token=$SONAR_TOKEN
 
 build:
diff --git a/app/pom.xml b/app/pom.xml
index 2bc729e..3654dc2 100644
--- a/app/pom.xml
+++ b/app/pom.xml
@@ -108,6 +108,14 @@
                     <compilerArgument>-parameters</compilerArgument>
                 </configuration>
             </plugin>
+            <plugin>
+                <groupId>org.owasp</groupId>
+                <artifactId>dependency-check-maven</artifactId>
+                <version>8.4.0</version>
+                <configuration>
+                    <format>ALL</format>
+                </configuration>
+            </plugin>
         </plugins>
     </build>