Ignore CVE-2022-1471

It doesn't affect the project
2023-01-16 07:40:03 +01:00 · 2023-01-16 07:40:03 +01:00 · d788070eb8
parent 627f6deb97
commit d788070eb8
2 changed files with 11 additions and 0 deletions
--- a/pom.xml
+++ b/pom.xml
@ -150,6 +150,7 @@
                        <format>html</format>
                        <format>json</format>
                    </formats>
+                    <suppressionFiles>suppressions.xml</suppressionFiles>
                </configuration>
            </plugin>

--- a/suppressions.xml
+++ b/suppressions.xml
@ -0,0 +1,10 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
+    <suppress>
+        <notes><![CDATA[
+      file name: snakeyaml-1.33.jar
+      ]]></notes>
+        <packageUrl regex="true">^pkg:maven/org\.yaml/snakeyaml@.*$</packageUrl>
+        <vulnerabilityName>CVE-2022-1471</vulnerabilityName>
+    </suppress>
+</suppressions>