From 74173c8320e1377b2861f872b040f6d5a91cca5b Mon Sep 17 00:00:00 2001
From: Paul Staroch <paulchen@rueckgr.at>
Date: Wed, 29 May 2024 22:20:26 +0200
Subject: [PATCH] configure NVD API key for dependency check

---
 .github/workflows/build_after_push.yml | 2 ++
 README.md                              | 4 ++++
 build.gradle.kts                       | 1 +
 3 files changed, 7 insertions(+)

diff --git a/.github/workflows/build_after_push.yml b/.github/workflows/build_after_push.yml
index d193a41..526e0e5 100644
--- a/.github/workflows/build_after_push.yml
+++ b/.github/workflows/build_after_push.yml
@@ -21,6 +21,8 @@ jobs:
         uses: gradle/wrapper-validation-action@v1
       - name: Build with Gradle
         uses: gradle/gradle-build-action@v2
+        env:
+          NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
         with:
           arguments: |
             build
diff --git a/README.md b/README.md
index 5d548d4..c8b7e1d 100644
--- a/README.md
+++ b/README.md
@@ -24,3 +24,7 @@ Refer to `main.kt` in `kotlin-rocket-bot` for an example on how to do this.
 
 __Important__: This bot handles incoming Rocket.Chat messages asynchronously.
 Therefore, you need to ensure thread-safety in your handlers.  
+
+## About the build
+
+This product uses the NVD API but is not endorsed or certified by the NVD.
diff --git a/build.gradle.kts b/build.gradle.kts
index 3789ad8..733a598 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -44,6 +44,7 @@ configure<DependencyCheckExtension> {
     analyzers.assemblyEnabled = false
     failBuildOnCVSS = 7f
     suppressionFile = file("$rootDir/cve-suppressions.xml").toString()
+    nvd.apiKey = System.getenv("NVD_API_KEY")
 }
 
 repositories {