0Searching for all files in '/var/lib/jenkins/workspace/GovWay' that match the pattern '**/osv-scanner-report.sarif'Traversing of symbolic links: enabled-> found 1 fileSuccessfully parsed file /var/lib/jenkins/workspace/GovWay/osv-scanner-result/osv-scanner-report.sarif-> found 0 issues (skipped 0 duplicates)Successfully processed file 'osv-scanner-result/osv-scanner-report.sarif'Skipping post processingNo filter has been set, publishing all 0 issuesRepository miner is not configured, skipping repository miningReference build recorder is not configuredNo valid reference build foundAll reported issues will be considered outstandingNo quality gates have been set - skippingHealth report is disabled - skippingCreated analysis result for 0 issues (found 0 new issues, fixed 0 issues)Attaching ResultAction with ID 'osv' to build 'GovWay #1444'.01444Started by GitHub push by andreapoli6990a6a613b76be884385cfc28d7aa6dc67729f3d990a6a613b76be884385cfc28d7aa6dc67729f3drefs/remotes/origin/3.1.jenkins990a6a613b76be884385cfc28d7aa6dc67729f3d990a6a613b76be884385cfc28d7aa6dc67729f3drefs/remotes/origin/3.1.jenkins1247db1e00b69f3a8bbca1ba94f8acbac002046e21f1db1e00b69f3a8bbca1ba94f8acbac002046e21f1origin/masterdb1e00b69f3a8bbca1ba94f8acbac002046e21f1db1e00b69f3a8bbca1ba94f8acbac002046e21f1origin/master76fbd33042190e7fcbeb9182a6909b8ff8d9a5656afbd33042190e7fcbeb9182a6909b8ff8d9a5656aorigin/3.1.jenkinsfbd33042190e7fcbeb9182a6909b8ff8d9a5656afbd33042190e7fcbeb9182a6909b8ff8d9a5656aorigin/3.1.jenkins28510354f7c80b4e499ba1c695eea151d13f42d6f0a10354f7c80b4e499ba1c695eea151d13f42d6f0aorigin/3.3.0.jdk1110354f7c80b4e499ba1c695eea151d13f42d6f0a10354f7c80b4e499ba1c695eea151d13f42d6f0aorigin/3.3.0.jdk1114441d087471fa05051ad3b58cb2bc1efb9d9939da811d087471fa05051ad3b58cb2bc1efb9d9939da81origin/3.4.x1d087471fa05051ad3b58cb2bc1efb9d9939da811d087471fa05051ad3b58cb2bc1efb9d9939da81origin/3.4.x1297ba0e0e5fa5042792b3e36f61a6339472847aac17ba0e0e5fa5042792b3e36f61a6339472847aac17origin/3.4.0.devba0e0e5fa5042792b3e36f61a6339472847aac17ba0e0e5fa5042792b3e36f61a6339472847aac17origin/3.4.0.dev1d087471fa05051ad3b58cb2bc1efb9d9939da811d087471fa05051ad3b58cb2bc1efb9d9939da81origin/3.4.xhttps://github.com/link-it/govway.gitdbf33342-a76d-48d8-918a-2100c0e48051govwaysonarqubeadminSonar-GovWayhttps://jenkins.link.it/govway4-sonarqube/truehttps://jenkins.link.it/govway4-sonarqubefalsehttps://jenkins.link.it/govway4-sonarqube/dashboard?id=govway309954testReport008985testngreportshttps://jenkins.link.it/govway4-sonarqube/dashboard?id=govwayfalse#14448477540787704831GovWay #14441444falsefalse1444197SUCCESS1776075900211https://jenkins.link.it/govway4/job/GovWay/1444/- resources/doc/src/manuali/validation-process/_figure_console/osv_vulnerability_trend.pngresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/ci_jenkins_owasp.rstmvn/dependencies/osv/falsePositives/ESEMPIO.tomlmvn/dependencies/pom.xmlresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/index.rstresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/ci_jenkins_osv.rstresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/maven.rstresources/doc/src/manuali/validation-process/_figure_console/osv_vulnerability_details.pngresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/ci_jenkins.rstpom.xmlresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/skip.rstREADME.compileresources/doc/src/manuali/validation-process/_figure_console/osv_scanner_maven_report.pngresources/doc/src/manuali/validation-process/_figure_console/osv_maven_report_elenco.pngmvn/dependencies/osv/osv-scanner.shChangeLog37346f40d88fd18d0c3ca4791ecd47e60a0be9ce1776072357000https://jenkins.link.it/govway4/user/poliAndrea Poliandreapoli80@gmail.com[GovWayCore]
Integrato OSV-Scanner (Google) come tool complementare a OWASP Dependency-Check per la scansione delle vulnerabilità delle dipendenze,
coprendo il gap di copertura causato dalla disabilitazione di Sonatype OSS Index e dal backlog NVD.
L'analyzer OSS Index è stato reso configurabile tramite la proprietà owasp.ossindex.enabled (default disabilitato).
2026-04-13 11:25:57 +020037346f40d88fd18d0c3ca4791ecd47e60a0be9ce[GovWayCore]editresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/skip.rsteditChangeLogeditresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/index.rstaddresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/ci_jenkins_owasp.rstaddmvn/dependencies/osv/osv-scanner.shaddresources/doc/src/manuali/validation-process/_figure_console/osv_vulnerability_trend.pngaddresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/ci_jenkins_osv.rsteditresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/maven.rsteditREADME.compileaddresources/doc/src/manuali/validation-process/_figure_console/osv_vulnerability_details.pngeditmvn/dependencies/pom.xmleditresources/doc/src/manuali/validation-process/thirdPartyDependencyAnalysis/ci_jenkins.rstaddmvn/dependencies/osv/falsePositives/ESEMPIO.tomleditpom.xmladdresources/doc/src/manuali/validation-process/_figure_console/osv_maven_report_elenco.pngaddresources/doc/src/manuali/validation-process/_figure_console/osv_scanner_maven_report.png
- protocolli/modipa/testsuite/src/configurazioni-govway/modipaTestBundle.zipprotocolli/modipa/testsuite/src/test/rest/sicurezza-messaggio/dpop_redis.featuref834432378ce16fd7e5ea11396545d90e1e76a9f1776074658000https://jenkins.link.it/govway4/user/poliAndrea Poliandreapoli80@gmail.com[ProtocolloModIPA]
Rivisti tempistiche di test utilizzate per filtro duplicati tramite redis
2026-04-13 12:04:18 +0200f834432378ce16fd7e5ea11396545d90e1e76a9f[ProtocolloModIPA]editprotocolli/modipa/testsuite/src/configurazioni-govway/modipaTestBundle.zipeditprotocolli/modipa/testsuite/src/test/rest/sicurezza-messaggio/dpop_redis.feature
- mvn/dependencies/testsuite/applicationServer/tomcat10/pom.xmlmvn/dependencies/testsuite/applicationServer/tomcat11/pom.xml1d087471fa05051ad3b58cb2bc1efb9d9939da811776074993000https://jenkins.link.it/govway4/user/poliAndrea Poliandreapoli80@gmail.com[GovWayCore]
Aggiornate librerie tomcat
2026-04-13 12:09:53 +02001d087471fa05051ad3b58cb2bc1efb9d9939da81[GovWayCore]editmvn/dependencies/testsuite/applicationServer/tomcat10/pom.xmleditmvn/dependencies/testsuite/applicationServer/tomcat11/pom.xml
githttps://jenkins.link.it/govway4/user/poliAndrea PoliINACTIVE-10