From d59a3d0f13058ddb24af330378c952a13a17fb9e Mon Sep 17 00:00:00 2001
From: Marco Bungart <marco.bungart@googlemail.com>
Date: Mon, 28 Aug 2023 19:21:31 +0200
Subject: [PATCH] Suppress CVE-2023-35116 as it is a false-positive per issue
 https://github.com/jeremylong/DependencyCheck/issues/5779

---
 src/test/resources/owasp-dependency-check.xml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/test/resources/owasp-dependency-check.xml b/src/test/resources/owasp-dependency-check.xml
index ac9a956..1801f3b 100644
--- a/src/test/resources/owasp-dependency-check.xml
+++ b/src/test/resources/owasp-dependency-check.xml
@@ -4,4 +4,8 @@
         <notes>Spring Boot application only use SnakeYaml to parse application.yaml files, which should be trusted.</notes>
         <cve>CVE-2022-1471</cve>
     </suppress>
+    <suppress>
+        <notes>False-Positive per issue https://github.com/jeremylong/DependencyCheck/issues/5779</notes>
+        <cve>CVE-2023-35116</cve>
+    </suppress>
 </suppressions>
\ No newline at end of file