[FP]: swagger-parser-safe-url-resolver flagged for parse-url_project #6441
Comments
|
Maven Coordinates <dependency>
<groupId>io.swagger.parser.v3</groupId>
<artifactId>swagger-parser-safe-url-resolver</artifactId>
<version>2.1.20</version>
</dependency>Suppression rule: <suppress base="true">
<notes><![CDATA[
FP per issue #6441
]]></notes>
<packageUrl regex="true">^pkg:maven/io\.swagger\.parser\.v3/swagger-parser-safe-url-resolver@.*$</packageUrl>
<cpe>cpe:/a:parse-url_project:</cpe>
</suppress>Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/7780304257 |
|
Possible duplicate of #6422 |
jeremylong
pushed a commit
that referenced
this issue
Feb 5, 2024
Sorry, I didn't see your ticket 😦 |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Package URl
pkg:maven/io.swagger.parser.v3/[email protected]
CPE
cpe:2.3:a:parse-url_project::::::::*
CVE
No response
ODC Integration
None
ODC Version
9.0.9
Description
This FP has already been declared in #5754 but the suppression rule got limited to the version 2.1.14, which raises an alert again when using another one as a dependency.
The text was updated successfully, but these errors were encountered: