chore: add suppressions for false positives

coopernetes · coopernetes · commit 5c87fbc04504 · 2026-03-30T00:25:27.000-04:00
diff --git a/.github/workflows/cve.yml b/.github/workflows/cve.yml
@@ -21,6 +21,7 @@ jobs:
           format: 'HTML'
           out: 'reports' # this is the default, no need to specify unless you wish to override it
           args: >
+            --suppression gradle-suppressions.xml
             --failOnCVSS 5
             --enableRetired
 
diff --git a/gradle-suppressions.xml b/gradle-suppressions.xml
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
+    <suppress>
+        <notes><![CDATA[
+   file name: jgit-proxy-server-0.0.1-SNAPSHOT.jar
+   ]]></notes>
+        <sha1>7346fea9464b00d983f2b9ba1c761c7e823c7835</sha1>
+        <cpe>cpe:/a:finos:gitproxy</cpe>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[
+   file name: jgit-proxy-server-0.0.1-SNAPSHOT.jar
+   ]]></notes>
+        <sha1>7346fea9464b00d983f2b9ba1c761c7e823c7835</sha1>
+        <cpe>cpe:/a:jetty:jetty</cpe>
+    </suppress>
+</suppressions>
