Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OSS Index rate limit exceeded, disabling the analyzer #6587

Open
Muskan-0618 opened this issue Apr 15, 2024 · 2 comments
Open

OSS Index rate limit exceeded, disabling the analyzer #6587

Muskan-0618 opened this issue Apr 15, 2024 · 2 comments
Labels
question

Comments

@Muskan-0618
Copy link

We are experiencing OSS rate limit error in some of our scans. Complete error message is:-

OSS Index rate limit exceeded, disabling the analyzer
exception: org.owasp.dependencycheck.analyzer.exception.AnalysisException: OSS Index rate limit exceeded, disabling the analyzer
org.owasp.dependencycheck.analyzer.OssIndexAnalyzer.analyzeDependency(OssIndexAnalyzer.java:151)
org.owasp.dependencycheck.analyzer.AbstractAnalyzer.analyze(AbstractAnalyzer.java:131)
org.owasp.dependencycheck.AnalysisTask.call(AnalysisTask.java:88)
org.owasp.dependencycheck.AnalysisTask.call(AnalysisTask.java:37)
java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
java.base/java.lang.Thread.run(Thread.java:834)

We are using the OSS Index credentials to trigger the scans but still getting this error if multiple scans(more than 4) are getting triggered at an interval of 1-2 mins.

Any form assistance would be greatly appreciated.
@aikebah
Copy link
Collaborator

aikebah commented Apr 16, 2024

ensure to persist and share the data folder of dependencycheck among those invocations to benefit from reusing recent (cached) responses from other scans on identical libraries

@jeremylong
Copy link
Owner

@aikebah I think we can do better on the caching for the OSS Index... but saving the data folder between scans is something far too few users do and it causes them issues.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jeremylong @aikebah @Muskan-0618