anchore-engine icon indicating copy to clipboard operation
anchore-engine copied to clipboard

Published 20 hours ago verified publisher icon anchore

Tool reports a false positive on httpclient-4.5.13.jar

Open navzen2000 opened this issue 3 years ago • 0 comments

Is this a request for help?:

Is this a BUG REPORT or a FEATURE REQUEST? (choose one): BUG REPORT

Version of Anchore Engine and Anchore CLI if applicable: anchore-cli, version 0.8.2

Name: anchore-engine Version: 0.8.2

What happened: Tool reported CVE-2020-13956 against httpclient-4.5.13.jar

What did you expect to happen: CVE-2020-13956 is not applicable to httpclient-4.5.13.jar

Any relevant log output from /var/log/anchore:

What docker images are you using:

How to reproduce the issue:

Anything else we need to know:

navzen2000 avatar May 05 '21 04:05 navzen2000