Suppress CVE-2023-35116 as it is a false-positive per issue jeremylon…

…g/DependencyCheck#5779
chehl · Aug 28, 2023 · 7a9f61c · 7a9f61c
1 parent 5faee76
commit 7a9f61c
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/src/test/resources/owasp-dependency-check.xml b/src/test/resources/owasp-dependency-check.xml
@@ -4,4 +4,8 @@
         <notes>Spring Boot application only use SnakeYaml to parse application.yaml files, which should be trusted.</notes>
         <cve>CVE-2022-1471</cve>
     </suppress>
+    <suppress>
+        <notes>False-Positive per issue https://github.com/jeremylong/DependencyCheck/issues/5779</notes>
+        <cve>CVE-2023-35116</cve>
+    </suppress>
 </suppressions>