Class KnownExploitedVulnerabilityAnalyzer

java.lang.Object
org.owasp.dependencycheck.analyzer.AbstractAnalyzer
org.owasp.dependencycheck.analyzer.KnownExploitedVulnerabilityAnalyzer
All Implemented Interfaces:
Analyzer
@ThreadSafe public class KnownExploitedVulnerabilityAnalyzer extends AbstractAnalyzer
This analyzer adds information about known exploited vulnerabilities.
Author:
Jeremy Long

  • Constructor Details

    • KnownExploitedVulnerabilityAnalyzer

      public KnownExploitedVulnerabilityAnalyzer()

  • Method Details

    • getName

      public String getName()
      Returns the name of the analyzer.
      Returns:
      the name of the analyzer.

    • getAnalysisPhase

      public AnalysisPhase getAnalysisPhase()
      Returns the phase that the analyzer is intended to run in.
      Returns:
      the phase that the analyzer is intended to run in.

    • getAnalyzerEnabledSettingKey

      protected String getAnalyzerEnabledSettingKey()

      Returns the setting key to determine if the analyzer is enabled.

      Specified by:
      getAnalyzerEnabledSettingKey in class AbstractAnalyzer
      Returns:
      the key for the analyzer's enabled property

    • prepareAnalyzer

      public void prepareAnalyzer(Engine engine) throws InitializationException
      The prepare method does nothing for this Analyzer.
      Overrides:
      prepareAnalyzer in class AbstractAnalyzer
      Parameters:
      engine - a reference the dependency-check engine
      Throws:
      InitializationException - thrown if there is an exception

    • analyzeDependency

      protected void analyzeDependency(Dependency dependency, Engine engine) throws AnalysisException
      Adds information about the known exploited vulnerabilities to the analysis.
      Specified by:
      analyzeDependency in class AbstractAnalyzer
      Parameters:
      dependency - The dependency being analyzed
      engine - The scanning engine
      Throws:
      AnalysisException - is thrown if there is an exception analyzing the dependency.