dependency-check-maven plugin introduced

pom.xml

@@ -15,20 +15,19 @@
     limitations under the License.
 
 -->
-<project xmlns="http://maven.apache.org/POM/4.0.0"
-  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
   xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
   <modelVersion>4.0.0</modelVersion>
 
   <parent>
     <groupId>org.everit.config</groupId>
     <artifactId>org.everit.config.oss</artifactId>
-    <version>8.0.0</version>
+    <version>9.0.0</version>
   </parent>
 
   <groupId>org.everit.atlassian</groupId>
   <artifactId>org.everit.atlassian.restclient.jiracloud</artifactId>
-  <version>3.0.1-202010281413</version>
+  <version>3.0.2-202010281413</version>
 
   <packaging>bundle</packaging>
 
@@ -95,22 +94,58 @@
         </configuration>
         <executions>
           <execution>
-             <id>baseline</id>
-             <goals>
-               <goal>baseline</goal>
-             </goals>
-             <configuration>
-               <failOnError>true</failOnError>
-               <failOnWarning>true</failOnWarning>
-             </configuration>
-           </execution>
-         </executions>
+            <id>baseline</id>
+            <goals>
+              <goal>baseline</goal>
+            </goals>
+            <configuration>
+              <failOnError>true</failOnError>
+              <failOnWarning>true</failOnWarning>
+            </configuration>
+          </execution>
+        </executions>
+      </plugin>
+      <plugin>
+        <groupId>org.owasp</groupId>
+        <artifactId>dependency-check-maven</artifactId>
+        <version>6.1.2</version>
+        <executions>
+          <execution>
+            <goals>
+              <goal>aggregate</goal>
+            </goals>
+            <configuration>
+              <!-- high or above -->
+              <failBuildOnCVSS>7</failBuildOnCVSS>
+              <suppressionFile>${nvd.supprpression.file}</suppressionFile>
+              <skipProvidedScope>true</skipProvidedScope>
+            </configuration>
+          </execution>
+        </executions>
+      </plugin>
+      <plugin>
+        <groupId>com.mycila</groupId>
+        <artifactId>license-maven-plugin</artifactId>
+        <version>3.0</version>
+        <configuration>
+          <excludes>
+            <exclude>LICENSE</exclude>
+            <exclude>**/.pmdruleset.xml</exclude>
+            <exclude>**/.fbExcludeFilterFile</exclude>
+            <exclude>**/.checkstyle</exclude>
+            <exclude>**/.pmd</exclude>
+            <exclude>**/*.min.js</exclude>
+            <exclude>**/*.min.css</exclude>
+            <exclude>**/*.patch</exclude>
+            <exclude>**/*.sha256</exclude>
+          </excludes>
+        </configuration>
       </plugin>
     </plugins>
   </build>
 
   <dependencies>
-  <!-- Real dependencies -->
+    <!-- Real dependencies -->
     <dependency>
       <groupId>org.everit.http</groupId>
       <artifactId>org.everit.http.restclient</artifactId>
@@ -185,9 +220,9 @@
           <plugin>
             <groupId>org.openapitools</groupId>
             <artifactId>openapi-generator-maven-plugin</artifactId>
-    <!-- RELEASE_VERSION -->
+            <!-- RELEASE_VERSION -->
             <version>4.0.3</version>
-    <!-- /RELEASE_VERSION -->
+            <!-- /RELEASE_VERSION -->
             <executions>
               <execution>
                 <id>generate-v2</id>
@@ -249,7 +284,7 @@
             <groupId>com.mycila</groupId>
             <artifactId>license-maven-plugin</artifactId>
             <executions>
-              <execution> 
+              <execution>
                 <phase>generate-sources</phase>
                 <goals>
                   <goal>format</goal>
@@ -279,7 +314,8 @@
               <replacements>
                 <replacement>
                   <token>public class FieldUpdateOperation</token>
-                  <value>@com.fasterxml.jackson.annotation.JsonInclude(com.fasterxml.jackson.annotation.JsonInclude.Include.NON_NULL)&#xA;public class FieldUpdateOperation</value>
+                  <value>@com.fasterxml.jackson.annotation.JsonInclude(com.fasterxml.jackson.annotation.JsonInclude.Include.NON_NULL)&#xA;public
+                    class FieldUpdateOperation</value>
                 </replacement>
               </replacements>
             </configuration>
@@ -289,7 +325,7 @@
     </profile>
     <profile>
       <id>ide</id>
-   <!-- This profile is only activated when building in Eclipse with m2e -->
+      <!-- This profile is only activated when building in Eclipse with m2e -->
 
       <dependencies>
         <!-- For executing groovy scripts in the ide -->