ci chore: vulnerability scan is failing after 6h

[lread]

No description provided.

[lread]

There are several issues about this over at DependencyCheck, for example: jeremylong/DependencyCheck#6760. If I understand it, the NIST data feeds are not working very well these days. I'll try a couple of things here:

1. Bump DependencyCheck to v10. I don't know if this will help, but a current local test with v10 is doing better than the local test I tried yesterday with the current transitive dep of v9.0.8.
2. Change the database caching strategy. The NIST data feeds recently changed to support downloading database updates instead of the entire database. Our current caching strategy is 1d, so I don't think we take advantage of this.

[damu9618]

@lread Thanks for the input, However I have jeremylong/DependencyCheck#6760 this issue post upgrade to depdendencycheck v10

[lread]

Thanks, @damu9618. I noticed that. I'm not clear on the root cause yet. Is it not that the NIST data feeds are misbehaving these days? I was guessing that bumping to DependencyCheck latest (v10) would not hurt my situation, but I could be wrong.