File: suppression.xml

package info (click to toggle)
puppetdb 8.8.1-1~exp1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 19,692 kB
  • sloc: javascript: 23,285; ruby: 5,620; sh: 3,457; python: 389; xml: 114; makefile: 38
file content (13 lines) | stat: -rw-r--r-- 632 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
 
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
  <suppress>
    <notes><![CDATA[
    This suppresses a medium vulnerability that was found in a cache crate for
    Rust.  It is a false positive on the Clojure package core.cache-0.7.1 since
    the Clojure package that we use does not have any relation to Rust.
    The file name that causes the false positive: core.cache-0.7.1.jar
    ]]></notes>
    <packageUrl regex="true">^pkg:maven/org\.clojure/core\.cache@.*$</packageUrl>
    <cve>CVE-2020-36448</cve>
  </suppress>
</suppressions>