Update OWASP suppression date bounds

org.openrewrite.xml.security.UpdateOwaspSuppressionDate Updates the expiration date for OWASP suppressions having a matching cve tag. For use with the OWASP dependency-check tool. More details: https://jeremylong.github.io/DependencyCheck/general/suppression.html.
Source
​Github, Issue Tracker, Maven Central​
groupId: org.openrewrite
artifactId: rewrite-xml
version: 7.38.0
Options
Type
Name
Description
List
cveList
Update suppressions having any of the specified CVE tags.
String
untilDate
Optional. Optional. The date to add to the suppression. Default will be 30 days from today.
Usage
This recipe has required configuration parameters. Recipes with required configuration parameters cannot be activated directly. To activate this recipe you must create a new recipe which fills in the required parameters. In your rewrite.yml create a new recipe with a unique name. For example: com.yourorg.UpdateOwaspSuppressionDateExample. Here's how you can define and customize such a recipe within your rewrite.yml:
rewrite.yml
---
type: specs.openrewrite.org/v1beta/recipe
name: com.yourorg.UpdateOwaspSuppressionDateExample
displayName: Update OWASP suppression date bounds example
recipeList:
  - org.openrewrite.xml.security.UpdateOwaspSuppressionDate:
      cveList: CVE-2022-1234
      untilDate: 2023-01-01
Now that com.yourorg.UpdateOwaspSuppressionDateExample has been defined activate it in your build file:
Gradle
Maven
build.gradle
plugins {
    id("org.openrewrite.rewrite") version("5.38.0")
}
​
rewrite {
    activeRecipe("com.yourorg.UpdateOwaspSuppressionDateExample")
}
​
repositories {
    mavenCentral()
}
​
pom.xml
<project>
  <build>
    <plugins>
      <plugin>
        <groupId>org.openrewrite.maven</groupId>
        <artifactId>rewrite-maven-plugin</artifactId>
        <version>4.42.0</version>
        <configuration>
          <activeRecipes>
            <recipe>com.yourorg.UpdateOwaspSuppressionDateExample</recipe>
          </activeRecipes>
        </configuration>
      </plugin>
    </plugins>
  </build>
</project>
See how this recipe works across multiple open-source repositories
​​
​​
The Moderne public SaaS instance enables you to easily run recipes across thousands of open-source repositories.
Please contact Moderne for more information about safely running the recipes on your own codebase in a private SaaS.

Type	Name	Description
`List`	cveList	Update suppressions having any of the specified CVE tags.
`String`	untilDate	Optional. Optional. The date to add to the suppression. Default will be 30 days from today.

Remove out-of-date OWASP suppressions

YAML

Last modified 5h ago