如何解决Jenkins Maven OWASP 错误“[ERROR] IO 异常连接到 https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2008.xml.gz”
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2008.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2008.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2002.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2002.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2018.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2018.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2009.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2009.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2007.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2007.xml.gz
14:23:39 [WARNING] Unable to download the NVD CVE data; the results may not include the most recent CPE/CVEs from the NVD.
14:23:39 [INFO] If you are behind a proxy you may need to configure dependency-check to use the proxy.
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2010.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/Feeds/xml/cve/2.0/nvdcve-2.0-2010.xml.gz
14:23:39 [WARNING] Unable to update Cached Web DataSource,using local data instead. Results may not include recent vulnerabilities.
14:23:39 [ERROR] No documents exist
14:23:39
14:23:39 Unable to continue dependency-check analysis.
14:23:39 [INFO] ------------------------------------------------------------------------
14:23:39 [INFO] BUILD FAILURE
14:23:39 [INFO] ------------------------------------------------------------------------
...
14:23:40 [INFO] ------------------------------------------------------------------------
14:23:40 [ERROR] Failed to execute goal org.owasp:dependency-check-maven:4.0.2:check (default-cli) on project wbe-common: Fatal exception(s) analyzing wbe-common: Unable to continue dependency-check analysis.
14:23:40 [ERROR] Unable to download the NVD CVE data.
14:23:40 [ERROR] No documents exist
...
14:23:40 [ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/MojoExecutionException
14:23:40 Build step 'Execute shell' marked build as failure
14:23:40 Finished: FAILURE
我们在 POM 文件中使用了“3.1.2”版本,但仍然没有运气
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
<version>3.1.2</version>
<configuration>
<cveUrl12Modified>https://nvd.nist.gov/Feeds/xml/cve/1.2/nvdcve-modified.xml.gz</cveUrl12Modified>
...
</configuration>
</plugin>
有人可以帮忙吗。
~卡提克
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。