dhis2-devs team mailing list archive

Thread
Date

Re: DHIS dependency scan

To: Aamer Mohammed <aamerm@xxxxxxxxxxxxxxxx>
From: Greg Wilson <gwilson@xxxxxxxxxxxxxx>
Date: Thu, 27 Oct 2016 07:10:06 -0400
Cc: Claes-Philip Staiger <claes-philip@xxxxxxxxxx>, DHIS Users <dhis2-users@xxxxxxxxxxxxxxxxxxx>, Theo Krommydakis <theo.krommydakis@xxxxxxxxxxxxxx>, DHIS 2 developers <dhis2-devs@xxxxxxxxxxxxxxxxxxx>, twoca <twoca@xxxxxxxxxxxxxxxx>
In-reply-to: <CAP3CzMgW5myK6rNFjstO3p+13=-tRTSRVeqD2DARF+dSL1VXvg@mail.gmail.com>

Yes, I have been running regular AppScans against DHIS2 and sharing the
results with the core team.
Greg

On Oct 27, 2016 6:14 AM, "Aamer Mohammed" <aamerm@xxxxxxxxxxxxxxxx> wrote:

> Hi Team,
>
> We have run vulnerability checks on DHIS dependencies using the
> dependency-check maven plugin. This plugin wraps the OWASP Dependency Check
> utility which uses NIST’s National Vulnerability Database (NVD) to identify
> the vulnerable dependencies.
> Please find the report attached. Did anyone run this kind of vulnerability
> scan earlier. Any comments please?
>
>
> Thanks
> Aamer.
>
> _______________________________________________
> Mailing list: https://launchpad.net/~dhis2-devs
> Post to     : dhis2-devs@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~dhis2-devs
> More help   : https://help.launchpad.net/ListHelp
>
>

Follow ups

Re: DHIS dependency scan
From: Brajesh Murari, 2016-10-27

References

DHIS dependency scan
From: Aamer Mohammed, 2016-10-27