DependencyCheck [FP]: junit-jupiter-engine-5.8.2

[FP]: junit-jupiter-engine-5.8.2

Open Lars5678 opened this issue 3 years ago • 1 comments

Package URl

pkg:maven/org.junit.jupiter/[email protected]

CPE

cpe:2.3:a:fan_platform_project:fan_platform:5.8.2:*:*:*:*:*:*:*

CVE

CVE-2022-31514

ODC Integration

{"label"=>"Maven Plugin"}

ODC Version

7.1.1

Description

Please Cross Check. Seems False Positive due Manifest Entry provide-capability

Jul 15 '22 14:07 Lars5678

Maven Coordinates

<dependency>
   <groupId>org.junit.jupiter</groupId>
   <artifactId>junit-jupiter-engine</artifactId>
   <version>5.8.2</version>
</dependency>

Suppression rule:

<suppress base="true">
   <notes><![CDATA[
   FP per issue #4669
   ]]></notes>
   <packageUrl regex="true">^pkg:maven/org\.junit\.jupiter/junit-jupiter-engine@.*$</packageUrl>
   <cpe>cpe:/a:fan_platform_project:fan_platform</cpe>
</suppress>

Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/2677309590

Jul 15 '22 14:07 github-actions[bot]

approved

Nov 20 '22 17:11 aikebah

Suppress rule has been added to the generatedSuppressions branch.

Nov 20 '22 17:11 github-actions[bot]

DependencyCheck DependencyCheck copied to clipboard

[FP]: junit-jupiter-engine-5.8.2

Package URl

CPE

CVE

ODC Integration

ODC Version

Description

DependencyCheck
DependencyCheck copied to clipboard