github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-20 00:04:27 +01:00
Code Issues Packages Projects Releases Wiki Activity

added velocity-tools to base suppression as it should not be reported as struts

Browse Source 
Former-commit-id: 4649d95a091def05ae249da42aa7d6f845b14d59
This commit is contained in:
Jeremy Long
2014-08-30 07:48:02 -04:00
parent 459c2beb12
commit da20fb2922
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
dependency-check-core/src/main/resources/dependencycheck-base-suppression.xml
View File

@@ -17,4 +17,11 @@
<gav regex="true">com\.thoughtworks\.xstream:xstream:.*</gav> <gav regex="true">com\.thoughtworks\.xstream:xstream:.*</gav>
<cpe>cpe:/a:springsource:spring_framework</cpe> <cpe>cpe:/a:springsource:spring_framework</cpe>
</suppress> </suppress>
<suppress>
<notes><![CDATA[
Suppresses false positives on velocity tools.
]]></notes>
<gav regex="true">org.apache.velocity:velocity-tools:.*</gav>
<cpe>cpe:/a:apache:struts</cpe>
</suppress>
</suppressions> </suppressions>