Code development platform for open source projects from the European Union institutions

Skip to content
Snippets Groups Projects
Commit 112830be authored by Joze RIHTARSIC's avatar Joze RIHTARSIC
Browse files

EDELIVERY-13128-upgrade-libraries-and-plugins

parent 96dbbbe0
Branches bugfix/EDELIVERY-13128-upgrade-libraries-and-plugins
No related tags found
No related merge requests found
Pipeline #155771 passed with warnings
Stage: build-maven
    Stage: security-scanning
      Stage: visualization
        Hide whitespace changes
        Inline Side-by-side
        owasp-false-positive-warnings.xml
        + 11
        0
        View file @ 112830be
        ......@@ -81,4 +81,15 @@
        <packageUrl regex="true">^pkg:maven/org\.apache\.tomcat\.embed/tomcat\-embed\-websocket@.*$</packageUrl>
        <cve>CVE-2023-41080</cve>
        </suppress>
        <suppress>
        <notes><![CDATA[
        File name: joda-time-2.x
        This is transitive library of the 2WaySec, WSS4J 2.4.x: Check if this is needed when using WSS4J is upgrades
        and is not directly used by the 2waySSL library.
        NOTE: Currently the latest version 2.12.7 still report the same issue.
        This is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability.
        ]]></notes>
        <packageUrl regex="true">^pkg:maven/joda\-time/joda\-time@.*$</packageUrl>
        <vulnerabilityName>CVE-2024-23080</vulnerabilityName>
        </suppress>
        </suppressions>
        0% or .
        You are about to add 0 people to the discussion. Proceed with caution.
        Finish editing this message first!
        Please register or to comment

        For further information about the platform and support, please see https://code.europa.eu/info/about