This is an automated email from the ASF dual-hosted git repository.
lukaszlenart pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/struts-examples.git
The following commit(s) were added to refs/heads/master by this push:
new 332b77d Suppresses outdated dependencies
332b77d is described below
commit 332b77d784d163d737767805c2758e5310e23129
Author: Lukasz Lenart <lukaszlen...@apache.org>
AuthorDate: Thu Jul 9 11:31:59 2020 +0200
Suppresses outdated dependencies
---
src/etc/project-suppression.xml | 15 +++++++++++++++
1 file changed, 15 insertions(+)
diff --git a/src/etc/project-suppression.xml b/src/etc/project-suppression.xml
index 6190d0e..d26cabc 100644
--- a/src/etc/project-suppression.xml
+++ b/src/etc/project-suppression.xml
@@ -193,4 +193,19 @@
<packageUrl regex="true">^pkg:maven/dom4j/dom4j@.*$</packageUrl>
<cpe>cpe:/a:dom4j_project:dom4j</cpe>
</suppress>
+ <suppress>
+ <notes><![CDATA[file name: tiles-ognl-3.0.8.jar]]></notes>
+ <packageUrl
regex="true">^pkg:maven/org\.apache\.tiles/tiles\-ognl@.*$</packageUrl>
+ <cve>CVE-2016-3093</cve>
+ </suppress>
+ <suppress>
+ <notes><![CDATA[file name: dom4j-1.1.jar]]></notes>
+ <packageUrl regex="true">^pkg:maven/dom4j/dom4j@.*$</packageUrl>
+ <vulnerabilityName>CVE-2020-10683</vulnerabilityName>
+ </suppress>
+ <suppress>
+ <notes><![CDATA[file name: struts-core-1.3.8.jar]]></notes>
+ <packageUrl
regex="true">^pkg:maven/org\.apache\.struts/struts\-core@.*$</packageUrl>
+ <vulnerabilityName>CVE-2015-2992</vulnerabilityName>
+ </suppress>
</suppressions>
\ No newline at end of file
