We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
pkg:maven/com.google.cloud.opentelemetry/[email protected]
cpe:2.3:a:opentelemetry:opentelemetry:0.31.0:::::::*
CVE-2023-43810
{"label"=>"Gradle Plugin"}
11.1.1
Multiple CVE reported are CVE-2023-45142 CVE-2023-47108 CVE-2023-43810
Why I think it is False Positive? The CVEs are reported in python and go of opentelemetry
The text was updated successfully, but these errors were encountered:
Maven Coordinates
<dependency> <groupId>com.google.cloud.opentelemetry</groupId> <artifactId>exporter-metrics</artifactId> <version>0.31.0</version> </dependency>
Suppression rule:
<suppress base="true"> <notes><![CDATA[ FP per issue #7264 ]]></notes> <packageUrl regex="true">^pkg:maven/com\.google\.cloud\.opentelemetry/exporter-metrics@.*$</packageUrl> <cpe>cpe:/a:opentelemetry:opentelemetry</cpe> </suppress>
Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/12415147722
Sorry, something went wrong.
approved
Suppress rule has been added to the generatedSuppressions branch.
generatedSuppressions
fix(fp): FP per issue #7264
640d5e7
No branches or pull requests
Package URl
pkg:maven/com.google.cloud.opentelemetry/[email protected]
CPE
cpe:2.3:a:opentelemetry:opentelemetry:0.31.0:::::::*
CVE
CVE-2023-43810
ODC Integration
{"label"=>"Gradle Plugin"}
ODC Version
11.1.1
Description
Multiple CVE reported are
CVE-2023-45142
CVE-2023-47108
CVE-2023-43810
Why I think it is False Positive?
The CVEs are reported in python and go of opentelemetry
The text was updated successfully, but these errors were encountered: