NIFI-10346 Add OWASP Dependency Check Suppressions

[exceptionfactory]

Summary

NIFI-10346 Updates the OWASP Dependency Check plugin suppressions configuration with the following changes:

• Suppressed Apache Calcite vulnerabilities not applicable to Calcite Avatica subproject
• Suppressed HBase server vulnerabilities not applicable to client libraries
• Suppressed several mismatched product vulnerabilities

The OWASP Dependency Check report can be run using the following build command:

mvn validate -P dependency-check

These updates incorporate incremental progress in eliminating false positives.

Tracking

Please complete the following tracking steps prior to pull request creation.

Issue Tracking

• [X] Apache NiFi Jira issue created

Pull Request Tracking

• [X] Pull Request title starts with Apache NiFi Jira issue number, such as NIFI-00000
• [X] Pull Request commit message starts with Apache NiFi Jira issue number, as such NIFI-00000

Pull Request Formatting

• [X] Pull Request based on current revision of the main branch
• [X] Pull Request refers to a feature branch with one commit containing changes

Verification

Please indicate the verification steps performed prior to pull request creation.

Build

• [ ] Build completed using mvn clean install -P contrib-check
  • [ ] JDK 8
  • [ ] JDK 11
  • [ ] JDK 17

Licensing

• [ ] New dependencies are compatible with the Apache License 2.0 according to the License Policy
• [ ] New dependencies are documented in applicable LICENSE and NOTICE files

Documentation

• [ ] Documentation formatting appears as expected in rendered files