8. OWASP Dependency Check

8.1. maven

<build>
    <plugins>
        <plugin>
            <groupId>org.owasp</groupId>
            <artifactId>dependency-check-maven</artifactId>
            <version>9.1.0</version>
            <executions>
                <execution>
                    <goals>
                        <goal>check</goal>
                    </goals>
                </execution>
            </executions>
            <configuration>
                <formats>
                    <format>HTML</format>
                    <format>JSON</format>
                </formats>
            </configuration>
        </plugin>
    </plugins>
</build>

8.2. node.js

npm install --package-lock
npm install --global yarn
npm install --global pnpm
dependency-check.sh --scan ./ -f JSON -f HTML -f XML -o reports

8.3. gradle

# 待补充