4.0.0 com.keyware.sonar sonar-keyware 1.0 Java 信息安全性设计准则 sonar-keyware-plugins-java sonar-plugin 1.0 用于检查Java源代码的安全性设计准则的Sonarqube插件 org.sonarsource.api.plugin sonar-plugin-api 9.9.0.229 provided org.slf4j slf4j-api provided org.sonarsource.java sonar-java-plugin ${sonar.java.version} sonar-plugin provided org.sonarsource.html sonar-html-plugin ${sonar.html.version} compile org.sonarsource.analyzer-commons sonar-analyzer-commons org.apache.logging.log4j log4j-slf4j-impl test org.apache.logging.log4j log4j-core test org.sonarsource.java java-checks-testkit ${sonar.java.version} test org.assertj assertj-core test org.junit.jupiter junit-jupiter test org.junit.jupiter junit-jupiter-api test org.junit.jupiter junit-jupiter-engine test org.junit.jupiter junit-jupiter-migrationsupport test org.sonarsource.sonarqube sonar-plugin-api-impl test com.fasterxml.jackson.core jackson-databind 2.16.0 compile org.yaml snakeyaml 1.28 compile org.sonarsource.sonar-packaging-maven-plugin sonar-packaging-maven-plugin true keywareJavaPlugin Java 安全性设计准则 com.keyware.sonar.java.JavaSecurityDesignRulesPlugin true true 8.9 java:${sonar.java.version},web:${sonar.html.version} 11 org.apache.maven.plugins maven-shade-plugin package shade org.apache.maven.plugins maven-compiler-plugin 11 11 org.jacoco jacoco-maven-plugin ${version.jacoco.plugin} prepare-agent prepare-agent report report org.apache.maven.plugins maven-dependency-plugin copy test-compile copy org.slf4j slf4j-api 1.7.30 jar org.apache.commons commons-collections4 4.0 jar javax javaee-api 6.0 jar org.springframework spring-webmvc 4.3.3.RELEASE jar org.springframework spring-web 4.3.3.RELEASE jar org.springframework spring-context 4.3.3.RELEASE jar junit junit 4.13.2 jar ${project.build.directory}/test-jars com.mycila license-maven-plugin

${project.basedir}/src/main/resources/license-header.txt

**/*.properties *.sh *.yml .editorconfig .gitignore **/*.md **/*.xml