Chad Wilson
Chad Wilson
Since the bot can't handle this automatically due to use of the RubyGems Maven repo; closing in favour of #4649
Hmm, this one has been lingering around for a while :-( (the github actions issue with backticks is related to not having the full `:*:*:*` CPE string. If you remove...
Thanks for doing this - it looks like it would help a lot with maintenance. I am wondering does someone have this working with the Gradle plugin? I can't seem...
I now note https://github.com/jeremylong/DependencyCheck/issues/4840#issuecomment-1245031987 which refers to debug logging and `-X` for Maven. It seems to work if you enable `--debug` for Gradle. Unfortunately running a large Gradle build with...
Yeah, I was thinking it would be nice if it were a (collapsed) section on the HTML report as well, alongside "Suppressed vulnerabilties". Probably a separate issue/feature request though -...
Suggested suppression rule ```xml ^pkg:maven/rubygems/jruby\-openssl@.*$ cpe:/a:jruby:jruby cpe:/a:openssl:openssl ```
Suggested suppression rule ```xml ^pkg:maven/rubygems/jruby\-readline@.*$ cpe:/a:jruby:jruby ```
Hi @aikebah - are you able to point me to how this was resolved or the relevant suppression? I am still getting this and needing to suppress with `7.2.1` via...
Ahh, I see - yeah, incorrect accidental linkage back there. Thanks!
As #74 was merged I'll close this for now. I guess we need a release and an update inside OWASP dep check though.