From a09697ed8f5dc3f42738e2b7d25397fb6eb87e3b Mon Sep 17 00:00:00 2001 From: Jeremy Long Date: Tue, 15 Nov 2022 06:46:40 -0500 Subject: [PATCH 1/2] fix: false positive, resolves #5048 --- .../main/resources/dependencycheck-base-suppression.xml | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/core/src/main/resources/dependencycheck-base-suppression.xml b/core/src/main/resources/dependencycheck-base-suppression.xml index dc908b85f27..4522ffe9a91 100644 --- a/core/src/main/resources/dependencycheck-base-suppression.xml +++ b/core/src/main/resources/dependencycheck-base-suppression.xml @@ -1084,6 +1084,15 @@ ^com\.liferay:org\.apache\.felix\.configadmin:.*$ cpe:/a:cm_project:cm + + + ^pkg:maven/com\.liferay\.portal/com\.liferay\.util\.slf4j@.*$ + cpe:/a:liferay:liferay + cpe:/a:liferay:liferay_portal + cpe:/a:liferay:portal + Date: Tue, 15 Nov 2022 06:48:58 -0500 Subject: [PATCH 2/2] fix: ensure suppression rule has base attribute --- core/src/main/resources/dependencycheck-base-suppression.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/core/src/main/resources/dependencycheck-base-suppression.xml b/core/src/main/resources/dependencycheck-base-suppression.xml index 4522ffe9a91..9d7b5027d5c 100644 --- a/core/src/main/resources/dependencycheck-base-suppression.xml +++ b/core/src/main/resources/dependencycheck-base-suppression.xml @@ -1084,7 +1084,7 @@ ^com\.liferay:org\.apache\.felix\.configadmin:.*$ cpe:/a:cm_project:cm - +