aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--archiva-modules/archiva-web/archiva-webapp/pom.xml2
-rw-r--r--archiva-modules/archiva-web/archiva-webapp/src/main/resources/META-INF/owasp/cve-suppressions.xml9
2 files changed, 10 insertions, 1 deletions
diff --git a/archiva-modules/archiva-web/archiva-webapp/pom.xml b/archiva-modules/archiva-web/archiva-webapp/pom.xml
index 1a73bb420..6e869f701 100644
--- a/archiva-modules/archiva-web/archiva-webapp/pom.xml
+++ b/archiva-modules/archiva-web/archiva-webapp/pom.xml
@@ -935,7 +935,7 @@
<plugin>
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
- <version>5.3.2</version>
+ <version>6.0.4</version>
<configuration>
<skipProvidedScope>true</skipProvidedScope>
<failBuildOnCVSS>8</failBuildOnCVSS>
diff --git a/archiva-modules/archiva-web/archiva-webapp/src/main/resources/META-INF/owasp/cve-suppressions.xml b/archiva-modules/archiva-web/archiva-webapp/src/main/resources/META-INF/owasp/cve-suppressions.xml
index 420e6a55e..2a3f08f77 100644
--- a/archiva-modules/archiva-web/archiva-webapp/src/main/resources/META-INF/owasp/cve-suppressions.xml
+++ b/archiva-modules/archiva-web/archiva-webapp/src/main/resources/META-INF/owasp/cve-suppressions.xml
@@ -64,4 +64,13 @@
<vulnerabilityName>CVE-2019-20444</vulnerabilityName>
</suppress>
+
+ <suppress>
+ <notes><![CDATA[
+ file name: jquery-file-upload-9.10.1.jar is part of deprecated Web UI.
+ ]]></notes>
+ <packageUrl regex="true">^pkg:maven/org\.webjars/jquery\-file\-upload@.*$</packageUrl>
+ <cpe>cpe:/a:jquery_file_upload_project:jquery_file_upload</cpe>
+ </suppress>
+
</suppressions>
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-11 16:57:39 +0000