Add OWASP suppression (#1377)
This commit is contained in:
parent
fd1eea71e6
commit
921ed912ff
|
@ -0,0 +1,17 @@
|
||||||
|
<?xml version="1.0" encoding="UTF-8"?>
|
||||||
|
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
|
||||||
|
<suppress>
|
||||||
|
<notes><![CDATA[
|
||||||
|
This suppresses CVEs related to a HAPI-FHIR parent pom that no longer exists in fhir-test-cases
|
||||||
|
]]></notes>
|
||||||
|
<packageUrl regex="true">^pkg:maven/org\.hl7\.fhir\.testcases/fhir\-test\-cases@.*$</packageUrl>
|
||||||
|
<cve>CVE-2019-12741</cve>
|
||||||
|
</suppress>
|
||||||
|
<suppress>
|
||||||
|
<notes><![CDATA[
|
||||||
|
This suppresses CVEs related to a HAPI-FHIR parent pom that no longer exists in fhir-test-cases
|
||||||
|
]]></notes>
|
||||||
|
<packageUrl regex="true">^pkg:maven/org\.hl7\.fhir\.testcases/fhir\-test\-cases@.*$</packageUrl>
|
||||||
|
<cve>CVE-2021-32053</cve>
|
||||||
|
</suppress>
|
||||||
|
</suppressions>
|
5
pom.xml
5
pom.xml
|
@ -705,6 +705,11 @@
|
||||||
<plugin>
|
<plugin>
|
||||||
<groupId>org.owasp</groupId>
|
<groupId>org.owasp</groupId>
|
||||||
<artifactId>dependency-check-maven</artifactId>
|
<artifactId>dependency-check-maven</artifactId>
|
||||||
|
<configuration>
|
||||||
|
<suppressionFiles>
|
||||||
|
<suppressionFile>owasp-suppression-file.xml</suppressionFile>
|
||||||
|
</suppressionFiles>
|
||||||
|
</configuration>
|
||||||
<executions>
|
<executions>
|
||||||
<execution>
|
<execution>
|
||||||
<goals>
|
<goals>
|
||||||
|
|
Loading…
Reference in New Issue