mirror of
https://github.com/ivuorinen/actions.git
synced 2026-01-26 11:34:00 +00:00
23 lines
880 B
XML
23 lines
880 B
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
|
|
<!-- Example suppression for a specific CVE -->
|
|
<suppress>
|
|
<notes>Description of why this vulnerability is suppressed</notes>
|
|
<cve>CVE-2023-12345</cve>
|
|
</suppress>
|
|
|
|
<!-- Example suppression for a specific package -->
|
|
<suppress>
|
|
<notes>Package is only used in development</notes>
|
|
<packageUrl regex="true">^pkg:npm/dev\-dependency@.*$</packageUrl>
|
|
<vulnerabilityName regex="true">.*</vulnerabilityName>
|
|
</suppress>
|
|
|
|
<!-- Example suppression based on CVSS score -->
|
|
<suppress>
|
|
<notes>Low severity issues in test dependencies</notes>
|
|
<cvssBelow>4.0</cvssBelow>
|
|
<packageUrl regex="true">^pkg:npm/test\-.*$</packageUrl>
|
|
</suppress>
|
|
</suppressions>
|