From 4e8f8a3f14641b12a84a6d79eafb697256e10583 Mon Sep 17 00:00:00 2001
From: Zhe Sun <31067185+ZheSun88@users.noreply.github.com>
Date: Thu, 23 Nov 2023 11:57:34 +0200
Subject: [PATCH] chore: pin dependency-check-maven verison to 8.4 (#4722)

---
 scripts/generateAndCheckSBOM.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scripts/generateAndCheckSBOM.js b/scripts/generateAndCheckSBOM.js
index 060d9aa15..f84e9e5e2 100755
--- a/scripts/generateAndCheckSBOM.js
+++ b/scripts/generateAndCheckSBOM.js
@@ -513,7 +513,7 @@ async function main() {
     // https://github.com/jeremylong/DependencyCheck/issues/4293
     // https://github.com/jeremylong/DependencyCheck/issues/1947
     fs.existsSync('package-lock.json') && fs.unlinkSync('package-lock.json')
-    !cmd.quick && await run('mvn org.owasp:dependency-check-maven:check -Dformat=JSON -q', { throw: false });
+    !cmd.quick && await run('mvn org.owasp:dependency-check-maven:8.4.2:check -Dformat=JSON -q', { throw: false });
     sumarizeOWASP('target/dependency-check-report.json', vulnerabilities);
   }