anchore-engine
anchore-engine copied to clipboard
Tool reports a false positive on httpclient-4.5.13.jar
Is this a request for help?:
Is this a BUG REPORT or a FEATURE REQUEST? (choose one): BUG REPORT
Version of Anchore Engine and Anchore CLI if applicable: anchore-cli, version 0.8.2
Name: anchore-engine Version: 0.8.2
What happened: Tool reported CVE-2020-13956 against httpclient-4.5.13.jar
What did you expect to happen: CVE-2020-13956 is not applicable to httpclient-4.5.13.jar
Any relevant log output from /var/log/anchore:
What docker images are you using:
How to reproduce the issue:
Anything else we need to know: