sonarqube-9:9.9.5-community failes to start with dependencycheck plugin mismatch
Summary
Pulling the latest registry1.dso.mil/ironbank/big-bang/sonarqube-9:9.9.5-community
fails to start with this error:
org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'jdk.internal.loader.ClassLoaders$AppClassLoader@4e0e2f2a-org.sonar.server.plugins.ServerPluginManager': Initialization of bean failed; nested exception is Plugin Dependency-Check [dependencycheck] requires at least Sonar Plugin API version 10.1.0.809 (current: 9.14.0.375)
Steps to reproduce
Pull and run the container.
What is the current bug behavior?
SonarQube fails to start
org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'jdk.internal.loader.ClassLoaders$AppClassLoader@4e0e2f2a-org.sonar.server.plugins.ServerPluginManager': Initialization of bean failed; nested exception is Plugin Dependency-Check [dependencycheck] requires at least Sonar Plugin API version 10.1.0.809 (current: 9.14.0.375)
What is the expected correct behavior?
SonarQube should start
Possible fixes
It might be related to this change: !128 (62ffc8d7)
Looking upstream at the dependency check plugin, version 5 is only compatible with sonarqube 10: https://github.com/dependency-check/dependency-check-sonar-plugin?tab=readme-ov-file#plugin-version-compatibility
Tasks
-
Bug has been identified and corrected within the container
Please read the Iron Bank Documentation for more info