DependencyCheck icon indicating copy to clipboard operation
DependencyCheck copied to clipboard

Published 20 hours ago verified publisher icon jeremylong

[FP]: graphql-java-kickstart-14.0.0.jar flagged with cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:*:*:*:*:*:*:*

Open cmuchinsky opened this issue 2 years ago • 1 comments

Package URl

pkg:maven/com.graphql-java-kickstart/[email protected]

CPE

cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:::::::*

CVE

CVE-2022-37734

ODC Integration

{"label"=>"Gradle Plugin"}

ODC Version

7.1.2

Description

graphql-java-kickstart-14.0.0.jar flagged with cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:::::::*

cmuchinsky avatar Sep 15 '22 10:09 cmuchinsky

Maven Coordinates

<dependency>
   <groupId>com.graphql-java-kickstart</groupId>
   <artifactId>graphql-java-kickstart</artifactId>
   <version>14.0.0</version>
</dependency>

Suppression rule:

<suppress base="true">
   <notes><![CDATA[
   FP per issue #4852
   ]]></notes>
   <packageUrl regex="true">^pkg:maven/com\.graphql-java-kickstart/graphql-java-kickstart@.*$</packageUrl>
   <cpe>cpe:/a:graphql-java_project:graphql-java</cpe>
</suppress>

Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/3059547813

github-actions[bot] avatar Sep 15 '22 10:09 github-actions[bot]

approved

aikebah avatar Sep 20 '22 17:09 aikebah

Failed to automatically generate and publish the suppression rule!

Link to action run: https://github.com/jeremylong/DependencyCheck/actions/runs/3092304520

github-actions[bot] avatar Sep 20 '22 17:09 github-actions[bot]

approved

aikebah avatar Sep 20 '22 18:09 aikebah

Suppress already exists in generatedSuppressions branch. See issue #4852.

github-actions[bot] avatar Sep 20 '22 18:09 github-actions[bot]