Include NVD API Token

turing85 · Mar 8, 2024 · 81212fa · 81212fa
1 parent e86f230
commit 81212fa
Show file tree

Hide file tree

Showing 4 changed files with 14 additions and 2 deletions.
diff --git a/.github/actions/owasp-scan/action.yml b/.github/actions/owasp-scan/action.yml
@@ -20,6 +20,9 @@ inputs:
     description: The Java version to use
     default: '17'
     required: true
+  nvd-api-key:
+    description: The API key for the NVD database, used by the dependency-check scan plugin
+    required: true
 
 runs:
   using: composite
@@ -58,6 +61,7 @@ runs:
           --batch-mode \
           --color always \
           --define ci-owasp \
+          --define nvdApiKey=${{ inputs.nvd-api-key }} \
           package
 
     - name: Upload OWASP Scan Report

diff --git a/.github/actions/populate-cache/action.yml b/.github/actions/populate-cache/action.yml
@@ -16,6 +16,9 @@ inputs:
     description: The Java version to use
     default: '17'
     required: true
+  nvd-api-key:
+    description: The API key for the NVD database, used by the dependency-check scan plugin
+    required: true
 
 
 runs:
@@ -39,6 +42,7 @@ runs:
           --batch-mode \
           --color always \
           --define ci-populate-cache \
+          --define nvdApiKey=${{ inputs.nvd-api-key }} \
           verify \
           quarkus:go-offline \
           de.qaware.maven:go-offline-maven-plugin:resolve-dependencies

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -65,6 +65,7 @@ jobs:
           graalvm-distribution: ${{ env.GRAALVM_DISTRIBUTION }}
           graalvm-version: ${{ env.GRAALVM_VERSION }}
           java-version: ${{ env.JAVA_VERSION }}
+          nvd-api-key: ${{ secrets.NVD_API_KEY }}
 
   build-and-test-jvm:
     name: Build and Test (JVM)
@@ -252,4 +253,5 @@ jobs:
         with:
           graalvm-distribution: ${{ env.GRAALVM_DISTRIBUTION }}
           graalvm-version: ${{ env.GRAALVM_DISTRIBUTION }}-${{ env.MANDREL_VERSION }}
-          java-version: ${{ env.JAVA_VERSION }}
+          java-version: ${{ env.JAVA_VERSION }}
+          nvd-api-key: ${{ secrets.NVD_API_KEY }}
diff --git a/.github/workflows/nightly-cve-scan.yml b/.github/workflows/nightly-cve-scan.yml
@@ -29,6 +29,7 @@ jobs:
           graalvm-distribution: ${{ env.GRAALVM_DISTRIBUTION }}
           graalvm-version: ${{ env.GRAALVM_VERSION }}
           java-version: ${{ env.JAVA_VERSION }}
+          nvd-api-key: ${{ secrets.NVD_API_KEY }}
 
   owasp:
     name: OWASP Scan
@@ -47,4 +48,5 @@ jobs:
           download-artifacts: false
           graalvm-distribution: ${{ env.GRAALVM_DISTRIBUTION }}
           graalvm-version: ${{ env.GRAALVM_VERSION }}
-          java-version: ${{ env.JAVA_VERSION }}
+          java-version: ${{ env.JAVA_VERSION }}
+          nvd-api-key: ${{ secrets.NVD_API_KEY }}