hmcts · Michael1142 · Feb 27, 2024 · Apr 17, 2020 · Apr 17, 2020 · Apr 17, 2020
@@ -14,6 +14,7 @@ The template is a working application with a minimal setup. It contains:
  * application skeleton
  * setup script to prepare project
  * common plugins and libraries
+ * [HMCTS Java plugin](https://github.com/hmcts/gradle-java-plugin)
  * docker setup
  * swagger configuration for api documentation ([see how to publish your api documentation to shared repository](https://github.com/hmcts/reform-api-docs#publish-swagger-docs))
  * code quality tools already set up
@@ -29,19 +30,32 @@ The application exposes health endpoint (http://localhost:4550/health) and metri
 
 The template contains the following plugins:
 
-  * checkstyle
+  * HMCTS Java plugin
 
-    https://docs.gradle.org/current/userguide/checkstyle_plugin.html
+    Applies code analysis tools with HMCTS default settings. See the [project repository](https://github.com/hmcts/gradle-java-plugin) for details.
 
-    Performs code style checks on Java source files using Checkstyle and generates reports from these checks.
-    The checks are included in gradle's *check* task (you can run them by executing `./gradlew check` command).
+    Analysis tools include:
 
-  * pmd
+    * checkstyle
 
-    https://docs.gradle.org/current/userguide/pmd_plugin.html
+        https://docs.gradle.org/current/userguide/checkstyle_plugin.html
 
-    Performs static code analysis to finds common programming flaws. Included in gradle `check` task.
+        Performs code style checks on Java source files using Checkstyle and generates reports from these checks.
+        The checks are included in gradle's *check* task (you can run them by executing `./gradlew check` command).
 
+    * pmd
+
+        https://docs.gradle.org/current/userguide/pmd_plugin.html
+
+        Performs static code analysis to finds common programming flaws. Included in gradle `check` task.
+
+    * org.owasp.dependencycheck
+
+        https://jeremylong.github.io/DependencyCheck/dependency-check-gradle/index.html
+
+        Provides monitoring of the project's dependent libraries and creating a report
+        of known vulnerable components that are included in the build. To run it
+        execute `gradle dependencyCheck` command.
 
   * jacoco
 
@@ -70,13 +84,6 @@ The template contains the following plugins:
 
     Reduces the amount of work needed to create a Spring application
 
-  * org.owasp.dependencycheck
-
-    https://jeremylong.github.io/DependencyCheck/dependency-check-gradle/index.html
-
-    Provides monitoring of the project's dependent libraries and creating a report
-    of known vulnerable components that are included in the build. To run it
-    execute `gradle dependencyCheck` command.
 
   * com.github.ben-manes.versions
 

diff --git a/build.gradle b/build.gradle
@@ -1,11 +1,13 @@
 plugins {
   id 'application'
-  id 'checkstyle'
-  id 'pmd'
   id 'jacoco'
+  /*
+      Applies analysis tools including checkstyle, PMD and OWASP Dependency checker.
+      See https://github.com/hmcts/gradle-java-plugin
+   */
+  id 'uk.gov.hmcts.java' version '0.4.2'
   id 'io.spring.dependency-management' version '1.0.9.RELEASE'
   id 'org.springframework.boot' version '2.2.6.RELEASE'
-  id 'org.owasp.dependencycheck' version '5.3.2.1'
   id 'com.github.ben-manes.versions' version '0.28.0'
   id 'org.sonarqube' version '2.8'
 }
@@ -84,21 +86,6 @@ task smoke(type: Test) {
   classpath = sourceSets.smokeTest.runtimeClasspath
 }
 
-checkstyle {
-  maxWarnings = 0
-  toolVersion = '8.29'
-  getConfigDirectory().set(new File(rootDir, 'config/checkstyle'))
-}
-
-pmd {
-  toolVersion = "6.18.0"
-  sourceSets = [sourceSets.main, sourceSets.test, sourceSets.functionalTest, sourceSets.integrationTest, sourceSets.smokeTest]
-  reportsDir = file("$project.buildDir/reports/pmd")
-  // https://github.com/pmd/pmd/issues/876
-  ruleSets = []
-  ruleSetFiles = files("config/pmd/ruleset.xml")
-}
-
 jacocoTestReport {
   executionData(test, integration)
   reports {
@@ -132,15 +119,7 @@ dependencyUpdates {
 
 // https://jeremylong.github.io/DependencyCheck/dependency-check-gradle/configuration.html
 dependencyCheck {
-  // Specifies if the build should be failed if a CVSS score above a specified level is identified.
-  // range of 0-10 fails the build, anything greater and it doesn't fail the build
-  failBuildOnCVSS = System.getProperty('dependencyCheck.failBuild') == 'true' ? 0 : 11
   suppressionFile = 'config/owasp/suppressions.xml'
-
-  analyzers {
-    // Disable scanning of .NET related binaries
-    assemblyEnabled = false
-  }
 }
 
 dependencyManagement {