Gitiles
Code Review Sign In
gerrit.opencord.org / fabric-tofino / e1cf4551b4ab74bb82a7cecf19d197698ffbc1cb^! / .
commite1cf4551b4ab74bb82a7cecf19d197698ffbc1cb[log] [tgz]
authorAndrey Pozolotin <posandrey@gmail.com>Mon Aug 24 14:53:22 2020 +0200
committerAndrey Pozolotin <posandrey@gmail.com>Tue Aug 25 13:30:21 2020 +0200
tree19099e2f249e26453c509fc136f11f111a8f8b9e
parent4874e029660e7a2129e9eca3c3dde644be327bb3 [diff]
[VOL-3353] Enabled Find Security Bugs

Change-Id: Ic46d9ef83963aba8439896ec9e04aef353a749a8

diff --git a/pom.xml b/pom.xml
index 9057bd1..90ce38b 100644
--- a/pom.xml
+++ b/pom.xml

@@ -79,6 +79,27 @@
                 <groupId>org.onosproject</groupId>
                 <artifactId>onos-maven-plugin</artifactId>
             </plugin>
+
+            <!-- SpotBugs Static Analysis -->
+            <plugin>
+                <groupId>com.github.spotbugs</groupId>
+                <artifactId>spotbugs-maven-plugin</artifactId>
+                <version>4.0.4</version>
+                <configuration>
+                    <effort>Max</effort>
+                    <threshold>Low</threshold>
+                    <failOnError>false</failOnError>
+                    <includeFilterFile>${session.executionRootDirectory}/spotbugs-security-include.xml</includeFilterFile>
+                    <excludeFilterFile>${session.executionRootDirectory}/spotbugs-security-exclude.xml</excludeFilterFile>
+                    <plugins>
+                        <plugin>
+                            <groupId>com.h3xstream.findsecbugs</groupId>
+                            <artifactId>findsecbugs-plugin</artifactId>
+                            <version>1.10.1</version>
+                        </plugin>
+                    </plugins>
+                </configuration>
+            </plugin>
         </plugins>
     </build>
 

diff --git a/spotbugs-security-exclude.xml b/spotbugs-security-exclude.xml
new file mode 100644
index 0000000..4aa0021
--- /dev/null
+++ b/spotbugs-security-exclude.xml

@@ -0,0 +1,17 @@
+<!--
+  ~ Copyright 2020-present Open Networking Foundation
+  ~
+  ~ Licensed under the Apache License, Version 2.0 (the "License");
+  ~ you may not use this file except in compliance with the License.
+  ~ You may obtain a copy of the License at
+  ~
+  ~     http://www.apache.org/licenses/LICENSE-2.0
+  ~
+  ~ Unless required by applicable law or agreed to in writing, software
+  ~ distributed under the License is distributed on an "AS IS" BASIS,
+  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ See the License for the specific language governing permissions and
+  ~ limitations under the License.
+  -->
+<FindBugsFilter>
+</FindBugsFilter>
\ No newline at end of file

diff --git a/spotbugs-security-include.xml b/spotbugs-security-include.xml
new file mode 100644
index 0000000..b3b408f
--- /dev/null
+++ b/spotbugs-security-include.xml

@@ -0,0 +1,20 @@
+<!--
+  ~ Copyright 2020-present Open Networking Foundation
+  ~
+  ~ Licensed under the Apache License, Version 2.0 (the "License");
+  ~ you may not use this file except in compliance with the License.
+  ~ You may obtain a copy of the License at
+  ~
+  ~     http://www.apache.org/licenses/LICENSE-2.0
+  ~
+  ~ Unless required by applicable law or agreed to in writing, software
+  ~ distributed under the License is distributed on an "AS IS" BASIS,
+  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ See the License for the specific language governing permissions and
+  ~ limitations under the License.
+  -->
+<FindBugsFilter>
+    <Match>
+        <Bug category="SECURITY"/>
+    </Match>
+</FindBugsFilter>
\ No newline at end of file