问题描述
我们在使用 OWASP 分析代码时遇到以下错误
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2008.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2008.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2002.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2002.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2018.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2018.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2009.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2009.xml.gz
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2007.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2007.xml.gz
14:23:39 [WARNING] Unable to download the NVD CVE data; the results may not include the most recent CPE/CVEs from the NVD.
14:23:39 [INFO] If you are behind a proxy you may need to configure dependency-check to use the proxy.
14:23:39 [ERROR] IO Exception connecting to https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2010.xml.gz: HEAD request returned a non-200 status code: https://nvd.nist.gov/feeds/xml/cve/2.0/nvdcve-2.0-2010.xml.gz
14:23:39 [WARNING] Unable to update Cached Web DataSource,using local data instead. Results may not include recent vulnerabilities.
14:23:39 [ERROR] No documents exist
14:23:39
14:23:39 Unable to continue dependency-check analysis.
14:23:39 [INFO] ------------------------------------------------------------------------
14:23:39 [INFO] BUILD FAILURE
14:23:39 [INFO] ------------------------------------------------------------------------
...
14:23:40 [INFO] ------------------------------------------------------------------------
14:23:40 [ERROR] Failed to execute goal org.owasp:dependency-check-maven:4.0.2:check (default-cli) on project wbe-common: Fatal exception(s) analyzing wbe-common: Unable to continue dependency-check analysis.
14:23:40 [ERROR] Unable to download the NVD CVE data.
14:23:40 [ERROR] No documents exist
...
14:23:40 [ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/MojoExecutionException
14:23:40 Build step 'Execute shell' marked build as failure
14:23:40 Finished: FAILURE
我们在 POM 文件中使用了“3.1.2”版本,但仍然没有运气
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
<version>3.1.2</version>
<configuration>
<cveUrl12Modified>https://nvd.nist.gov/feeds/xml/cve/1.2/nvdcve-modified.xml.gz</cveUrl12Modified>
...
</configuration>
</plugin>
有人可以帮忙吗。
~卡提克
解决方法
暂无找到可以解决该程序问题的有效方法,小编努力寻找整理中!
如果你已经找到好的解决方法,欢迎将解决方案带上本链接一起发送给小编。
小编邮箱:dio#foxmail.com (将#修改为@)