Skip to content

Commit

Permalink
Supress unlikely med. vuln. in compress
Browse files Browse the repository at this point in the history 
Signed-off-by: Gary O'Neall <[email protected]>
  • Loading branch information
@goneall
goneall committed Sep 5, 2024
1 parent b769415 commit e9ae99e
Showing 1 changed file with 8 additions and 0 deletions.
8 changes: 8 additions & 0 deletions dependency-check-supress.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -64,4 +64,12 @@
<packageUrl regex="true">^pkg:maven/com\.github\.jsonld\-java/jsonld\-java@.*$</packageUrl>
<cve>CVE-2023-5072</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: commons-compress-1.24.0.jar
Since this utility is only called by Jena - it is unlikely to be impacted
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.apache\.commons/commons\-compress@.*$</packageUrl>
<cve>CVE-2024-25710</cve>
</suppress>
</suppressions>

0 comments on commit e9ae99e

Please sign in to comment.