Apache
/
druid
mirror of https://github.com/apache/druid.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Suppress CVEs (#13733)

This commit is contained in:
AmatyaAvadhanula 2023-02-01 17:48:41 +05:30 committed by GitHub
parent 74ff848ce5
commit 76e79c7db7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
owasp-dependency-check-suppressions.xml
View File

@ -406,6 +406,7 @@
<cve>CVE-2022-25168</cve> <cve>CVE-2022-25168</cve>
<cve>CVE-2022-26612</cve> <cve>CVE-2022-26612</cve>
<cve>CVE-2018-8009</cve> <cve>CVE-2018-8009</cve>
<cve>CVE-2021-33036</cve>
</suppress> </suppress>
<suppress> <suppress>
<notes><![CDATA[ <notes><![CDATA[
@ -711,10 +712,11 @@
file name: d3-color:2.0.0 file name: d3-color:2.0.0
]]></notes> ]]></notes>
<!-- <!--
Not vulnerable to this as, we use d3-color on the client only. Not vulnerable to these as, we use d3-color on the client only.
--> -->
<packageUrl regex="true">^pkg:npm/d3\-color@.*$</packageUrl> <packageUrl regex="true">^pkg:npm/d3\-color@.*$</packageUrl>
<vulnerabilityName>1084597</vulnerabilityName> <vulnerabilityName>1084597</vulnerabilityName>
<vulnerabilityName>1088594</vulnerabilityName>
</suppress> </suppress>
<suppress> <suppress>