From 55b9a42b628fa36c6b078936ed708f9210f6f9c7 Mon Sep 17 00:00:00 2001
From: Jeremy Long <jeremy.long@gmail.com>
Date: Sun, 8 Oct 2017 07:48:10 -0400
Subject: [PATCH] several updates for FP

---
 .../dependencycheck-base-suppression.xml      | 66 +++++++++++++++++++
 1 file changed, 66 insertions(+)

diff --git a/dependency-check-core/src/main/resources/dependencycheck-base-suppression.xml b/dependency-check-core/src/main/resources/dependencycheck-base-suppression.xml
index 19656478e..c69d0057f 100644
--- a/dependency-check-core/src/main/resources/dependencycheck-base-suppression.xml
+++ b/dependency-check-core/src/main/resources/dependencycheck-base-suppression.xml
@@ -62,6 +62,7 @@
         6. net dns is a php module
         7. Even if a node.js package exists - we aren't flagging the entire node.js
         8. Context project is drupal plugin
+        9. mail_project is ruby library
         ]]></notes>
         <filePath regex="true">.*(\.(dll|jar|ear|war|pom|nupkg|nuspec)|pom\.xml|package.json)$</filePath>
         <cpe>cpe:/a:sandbox:sandbox</cpe>
@@ -75,6 +76,7 @@
         <cpe>cpe:/a:nodejs:node.js</cpe>
         <cpe>cpe:/a:nodejs:nodejs</cpe>
         <cpe>cpe:/a:context_project:context</cpe>
+        <cpe>cpe:/a:mail_project:mail</cpe>
     </suppress>
     <suppress base="true">
         <notes><![CDATA[
@@ -381,6 +383,13 @@
         <gav regex="true">org\.elasticsearch:securesm:.*</gav>
         <cpe>cpe:/a:elasticsearch:elasticsearch</cpe>
     </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        Glassfish false positives.
+        ]]></notes>
+        <gav regex="true">^javax\.servlet:javax\.servlet-api:.*$</gav>
+        <cpe>cpe:/a:oracle:glassfish</cpe>
+    </suppress>
     <suppress base="true">
         <notes><![CDATA[
         Glassfish false positives.
@@ -709,4 +718,61 @@
         <cpe>cpe:/a:mikel_lindsaar:mail</cpe>
         <cpe>cpe:/a:rest-client_project:rest-client</cpe>
     </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positives per issue #915
+        ]]></notes>
+        <gav regex="true">^net\.thisptr:jackson-jq:.*$</gav>
+        <cpe>cpe:/a:jq_project:jq</cpe>
+        <cpe>cpe:/a:id:id-software</cpe>
+    </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positives per issue #915
+        ]]></notes>
+        <gav regex="true">^org\.jruby\.jcodings:jcodings:.*$</gav>
+        <cpe>cpe:/a:jruby:jruby</cpe>
+    </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positives per issue #915
+        ]]></notes>
+        <gav regex="true">^org\.jruby\.joni:joni:.*$</gav>
+        <cpe>cpe:/a:jruby:jruby</cpe>
+    </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positives per issue #915
+        ]]></notes>
+        <gav regex="true">^org\.apache\.cxf\.xjc-utils:cxf-xjc-runtime:.*$</gav>
+        <cpe>cpe:/a:apache:cxf</cpe>
+    </suppress> 
+    <suppress base="true">
+        <notes><![CDATA[
+        false positives per issue #915
+        ]]></notes>
+        <gav regex="true">^javax\.validation:validation-api:.*$</gav>
+        <cpe>cpe:/a:bean_project:bean</cpe>
+    </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positive per issue #914
+        ]]></notes>
+        <gav regex="true">^org\.apache\.struts\.xwork:xwork-core:.*$</gav>
+        <cpe>cpe:/a:apache:struts</cpe>
+    </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positive per issue #908
+        ]]></notes>
+        <gav regex="true">^com\.unboundid:unboundid-ldapsdk:.*$</gav>
+        <cpe>cpe:/a:ldap_project:ldap</cpe>
+    </suppress>
+    <suppress base="true">
+        <notes><![CDATA[
+        false positive per issue #894
+        ]]></notes>
+        <gav regex="true">^org\.apache\.pdfbox:fontbox:.*$</gav>
+        <cpe>cpe:/a:font_project:font</cpe>
+    </suppress>
 </suppressions>