Hi all, It seems ossindex reports an invalid CVE for tomcat: https://ossindex.sonatype.org/component/pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.15 (https://ossindex.sonatype.org/vulnerability/CVE-2023-42794)
Am I right assuming it is due to the way coordinates are entered in their system more than an actual issue or did I miss something? Should we send a mail to ossin...@sonatype.org to get it fixed? Best, Romain Manni-Bucau @rmannibucau <https://twitter.com/rmannibucau> | Blog <https://rmannibucau.metawerx.net/> | Old Blog <http://rmannibucau.wordpress.com> | Github <https://github.com/rmannibucau> | LinkedIn <https://www.linkedin.com/in/rmannibucau> | Book <https://www.packtpub.com/application-development/java-ee-8-high-performance>
