-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathowasp-suppression.xml
39 lines (39 loc) · 1.17 KB
/
owasp-suppression.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<suppress>
<cpe>cpe:/a:pivotal_software:spring_security:5.4.5</cpe>
</suppress>
<suppress>
<notes>not valid for base-api</notes>
<packageUrl regex="true">^pkg:maven/org\.springframework/spring.*$</packageUrl>
<cve>CVE-2016-1000027</cve>
</suppress>
<suppress>
<notes>no untrusted source</notes>
<cve>CVE-2022-1471</cve>
</suppress>
<suppress>
<notes>AuthenticatedVoter no used</notes>
<cve>CVE-2024-22257</cve>
</suppress>
<suppress>
<notes>no UriComponentsBuilder</notes>
<cve>CVE-2024-22243</cve>
</suppress>
<suppress>
<notes>no UriComponentsBuilder</notes>
<cve>CVE-2024-22262</cve>
</suppress>
<suppress>
<notes>No WebFlux</notes>
<cve>CVE-2024-38821</cve>
</suppress>
<suppress>
<notes>Invalid CVE</notes>
<cve>CVE-2022-31514</cve>
</suppress>
<suppress>
<notes>Not applicable</notes>
<cve>CVE-2024-38816</cve>
</suppress>
</suppressions>