Fix Example Direct Vulnerability for Gradle
build.gradle configuration file specifically references a library, or you add the library to your project as a JAR file, Veracode SCA refers to the library as a direct dependency.
These example steps provide a fix for an Unauthorized Modification of Nodes vulnerability in Apache Kafka, version 0.9.0.1 in the example-java-gradle repository.
To complete this task:
build.gradlefile in the root of the project, and edit the
dependenciesscope to match this example: