Skip to content

Commit

Permalink
chore: update dependency check date suppression
Browse files Browse the repository at this point in the history
  • Loading branch information
@maureenorea-clores
maureenorea-clores authored Jan 6, 2025
1 parent 355909d commit 91f1d1b
Showing 1 changed file with 14 additions and 14 deletions.
28 changes: 14 additions & 14 deletions dependency_check_suppressions.xml
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<!-- Robolectric -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: guava-27.0.1-jre.jar
]]></notes>
Expand All @@ -12,15 +12,15 @@
</suppress>

<!-- Dokka -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: kotlin-analysis-intellij-1.7.10.jar (shaded: com.google.code.gson:gson:2.8.8)
]]></notes>
<packageUrl regex="true">^pkg:maven/com\.google\.code\.gson/gson@.*$</packageUrl>
<cpe>cpe:/a:google:gson</cpe>
<vulnerabilityName>CVE-2022-25647</vulnerabilityName>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: kotlin-analysis-intellij-1.7.10.jar (shaded: com.google.protobuf:protobuf-java:2.6.1)
]]></notes>
Expand All @@ -31,21 +31,21 @@
<vulnerabilityName>CVE-2022-3509</vulnerabilityName>
<vulnerabilityName>CVE-2024-7254</vulnerabilityName>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: woodstox-core-6.2.4.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/com\.fasterxml\.woodstox/woodstox\-core@.*$</packageUrl>
<vulnerabilityName>CVE-2022-40152</vulnerabilityName>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: woodstox-core-6.2.4.jar (shaded: com.sun.xml.bind.jaxb:isorelax:20090621)
]]></notes>
<packageUrl regex="true">^pkg:maven/com\.sun\.xml\.bind\.jaxb/isorelax@.*$</packageUrl>
<cve>CVE-2023-34411</cve>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: jackson-databind-2.12.7.1.jar
]]></notes>
Expand All @@ -54,7 +54,7 @@
</suppress>

<!-- Detekt -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: snakeyaml-1.33.jar
]]></notes>
Expand All @@ -63,7 +63,7 @@
</suppress>

<!-- SDK Utils -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: play-services-basement-17.0.0.aar
]]></notes>
Expand All @@ -73,7 +73,7 @@
</suppress>

<!-- Retrofit -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: okhttp-3.14.9.jar
]]></notes>
Expand All @@ -82,14 +82,14 @@
<cpe>cpe:/a:squareup:okhttp3</cpe>
<vulnerabilityName>CVE-2021-0341</vulnerabilityName>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: okio-1.17.2.jar
]]></notes>
<packageUrl regex="true">^pkg:maven/com\.squareup\.okio/okio@.*$</packageUrl>
<vulnerabilityName>CVE-2023-3635</vulnerabilityName>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: okhttp-3.14.9.jar
]]></notes>
Expand All @@ -98,7 +98,7 @@
</suppress>

<!-- WorkManager -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: work-runtime-2.7.1.aar: inspector.jar (shaded: com.google.protobuf:protobuf-javalite:3.10.0)
]]></notes>
Expand All @@ -108,7 +108,7 @@
<vulnerabilityName>CVE-2022-3171</vulnerabilityName>
<vulnerabilityName>CVE-2022-3510</vulnerabilityName>
</suppress>
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: work-runtime-2.7.1.aar: inspector.jar (shaded: com.google.protobuf:protobuf-javalite:3.10.0)
]]></notes>
Expand All @@ -117,7 +117,7 @@
</suppress>

<!-- Compose (Sample app) -->
<suppress until="2024-12-31Z">
<suppress until="2025-06-30Z">
<notes><![CDATA[
file name: ui-1.2.0-rc02.aar: inspector.jar (shaded: com.google.protobuf:protobuf-javalite:3.19.4)
]]></notes>
Expand Down

0 comments on commit 91f1d1b

Please sign in to comment.