From 5f5dcbced7c33adad9e1a034f16cb68dc6f18162 Mon Sep 17 00:00:00 2001
From: Paul Campbell <pcampbell@kemitix.net>
Date: Wed, 5 Oct 2022 22:10:17 +0100
Subject: [PATCH] Run dependency-check daily

commit-id:9684bd9e
---
 .github/workflows/dependency-check.yml | 10 ++++++++++
 pom.xml                                | 21 ++++++++++++++++++++-
 2 files changed, 30 insertions(+), 1 deletion(-)
 create mode 100644 .github/workflows/dependency-check.yml

diff --git a/.github/workflows/dependency-check.yml b/.github/workflows/dependency-check.yml
new file mode 100644
index 0000000..7095550
--- /dev/null
+++ b/.github/workflows/dependency-check.yml
@@ -0,0 +1,10 @@
+on:
+  schedule:
+    - cron: '30 5 * * *'
+
+jobs:
+  test_dependencies:
+    runs-on: ubuntu-latest
+    steps:
+      - name: check dependencies
+        run: mvn dependency-check:check
diff --git a/pom.xml b/pom.xml
index ba817a1..baa36b9 100644
--- a/pom.xml
+++ b/pom.xml
@@ -12,12 +12,13 @@
     </parent>
 
     <artifactId>kemitix-trello</artifactId>
-    <version>2.0.2</version>
+    <version>2.0.3</version>
 
     <properties>
         <tiles-maven-plugin.version>2.18</tiles-maven-plugin.version>
         <kemitix-tiles.version>2.10.0</kemitix-tiles.version>
 
+        <dependency-check-maven.version>7.2.1</dependency-check-maven.version>
         <trello-java-wrapper.version>0.14</trello-java-wrapper.version>
         <jackson.version>2.14.0-rc1</jackson.version>
         <httpmime.version>4.5.13</httpmime.version>
@@ -103,6 +104,24 @@
                     </tiles>
                 </configuration>
             </plugin>
+            <plugin>
+                <groupId>org.owasp</groupId>
+                <artifactId>dependency-check-maven</artifactId>
+                <version>${dependency-check-maven.version}</version>
+                <configuration>
+                    <skipProvidedScope>true</skipProvidedScope>
+                    <skipRuntimeScope>true</skipRuntimeScope>
+                    <skipTestScope>true</skipTestScope>
+                    <failBuildOnCVSS>7</failBuildOnCVSS>
+                </configuration>
+                <executions>
+                <execution>
+                    <goals>
+                        <goal>check</goal>
+                    </goals>
+                </execution>
+                </executions>
+            </plugin>
         </plugins>
     </build>