Give developers the last-mile help in fixing vulnerabilities
- Maven v3.1.0+ (required by Maven Dependency-Check Plugin)
woodpecker -h
woodpecker tree # shows depedency tree with vulnerabilities
woodpecker kill cve_id # updates the dependency until the cve_id is fixed. does NOT work with multi-module projectsBasically it simply does the following: (note that it use go-git instead of the usual git client)
mvn versions:use-next-releasesmvn verifygit branch -b auto-update-depsgit add **pom.xmlgit commit -m "auto update dependencies"git push --set-upstream=auto-update-deps- create pull request
[ ] multi-modules project
[ ] dependency suite (dependencies share the same version)