Dependencycheck: Gradle plugin 5.0.0 Build failure

Created on 24 Jun 2019  路  2Comments  路  Source: jeremylong/DependencyCheck

This is the only error message I see in the debug logs

An error occurred while analyzing '/home/jenkins/.gradle/caches/5.4.1/generated-gradle-jars/gradle-api-5.4.1.jar' (Sonatype OSS Index Analyzer).

Is there way to tell the gradle plugin to ignore/exclude certain paths or the geenrated gradle jars?

question
Source
picture din-eshch

Most helpful comment

I saw something similar to this after upgrading to 5.0.0 from 5.0.0-M2:
An error occurred while analyzing '/Users/joshhunziker/.gradle/caches/modules-2/files-2.1/org.projectlombok/lombok/1.18.8/448003bc1b234aac04b58e27d7755c12c3ec4236/lombok-1.18.8.jar' (Sonatype OSS Index Analyzer).
For a workaround, I had to disable the OSS Index Analyzer with 

dependencyCheck {
        analyzers {
            ossIndexEnabled = false
        }
}

Could this possibly be a bug with the analyzer?

picture jhunzik on 25 Jun 2019
👍2

All 2 comments

I saw something similar to this after upgrading to 5.0.0 from 5.0.0-M2:
An error occurred while analyzing '/Users/joshhunziker/.gradle/caches/modules-2/files-2.1/org.projectlombok/lombok/1.18.8/448003bc1b234aac04b58e27d7755c12c3ec4236/lombok-1.18.8.jar' (Sonatype OSS Index Analyzer).
For a workaround, I had to disable the OSS Index Analyzer with 

dependencyCheck {
        analyzers {
            ossIndexEnabled = false
        }
}

Could this possibly be a bug with the analyzer?

jhunzik picture jhunzik on 25 Jun 2019
👍2

There is not an issue with the analyzer. Rather, the OSS Index service was unavailable for a period of time.

jeremylong picture jeremylong on 25 Jun 2019
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

fabio-boldrini picture fabio-boldrini  路  4Comments
tediroca picture tediroca  路  3Comments
KevinMcT picture KevinMcT  路  3Comments
gwsu2008 picture gwsu2008  路  3Comments
rruizt picture rruizt  路  3Comments