From 4351befc388df108561dc7bf62fb79ef563b75d2 Mon Sep 17 00:00:00 2001
From: Aaron Steinfeld <aaron@traceable.ai>
Date: Thu, 20 Feb 2025 08:31:27 -0500
Subject: [PATCH 1/2] refactor: update dep check

---
 gradle/libs.versions.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
index f9afbe0..9f2a92e 100644
--- a/gradle/libs.versions.toml
+++ b/gradle/libs.versions.toml
@@ -100,7 +100,7 @@ hypertrace-integrationtest = { id = "org.hypertrace.integration-test-plugin", ve
 hypertrace-codestyle = { id = "org.hypertrace.code-style-plugin", version = "2.0.0" }
 hypertrace-docker-publish = { id = "org.hypertrace.docker-publish-plugin", version = "0.9.9" }
 hypertrace-docker-application = { id = "org.hypertrace.docker-java-application-plugin", version = "0.9.9" }
-owasp-dependencycheck = { id = "org.owasp.dependencycheck", version = "11.1.0" }
+owasp-dependencycheck = { id = "org.owasp.dependencycheck", version = "12.1.0" }
 google-protobuf = { id = "com.google.protobuf", version = "0.9.4" }
 
 [bundles]

From 889a5ada1862be19f7752ce0e8acceab609a7b35 Mon Sep 17 00:00:00 2001
From: Aaron Steinfeld <aaron@traceable.ai>
Date: Fri, 21 Feb 2025 08:04:33 -0500
Subject: [PATCH 2/2] ci: nvd api key

---
 .github/workflows/pr-build.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/pr-build.yml b/.github/workflows/pr-build.yml
index 8eba33f..07c2907 100644
--- a/.github/workflows/pr-build.yml
+++ b/.github/workflows/pr-build.yml
@@ -27,3 +27,5 @@ jobs:
     steps:
       - name: Dependency Check
         uses: hypertrace/github-actions/dependency-check@main
+        with:
+          nvd-api-key: ${{ secrets.NVD_API_KEY }}