This repository has been archived by the owner on Dec 20, 2024. It is now read-only.
forked from appmattus/kotlinfixture
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcve-suppressions.xml
106 lines (95 loc) · 3.55 KB
/
cve-suppressions.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
<?xml version="1.0" encoding="UTF-8"?>
<!--
~ Copyright 2020 Appmattus Limited
~
~ Licensed under the Apache License, Version 2.0 (the "License");
~ you may not use this file except in compliance with the License.
~ You may obtain a copy of the License at
~
~ http://www.apache.org/licenses/LICENSE-2.0
~
~ Unless required by applicable law or agreed to in writing, software
~ distributed under the License is distributed on an "AS IS" BASIS,
~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
~ See the License for the specific language governing permissions and
~ limitations under the License.
-->
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.2.xsd">
<suppress>
<notes><![CDATA[
CVE relates to use of jQuery by dokka which is considered safe
]]></notes>
<sha1>46a436eba01c79acdb225757ed80bf54bad6416b</sha1>
<cve>CVE-2019-11358</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to use of jQuery by dokka which is considered safe
]]></notes>
<sha1>46a436eba01c79acdb225757ed80bf54bad6416b</sha1>
<cve>CVE-2020-11022</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to use of jQuery by dokka which is considered safe
]]></notes>
<sha1>46a436eba01c79acdb225757ed80bf54bad6416b</sha1>
<cve>CVE-2020-11022</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to use of jQuery by dokka which is considered safe
]]></notes>
<sha1>46a436eba01c79acdb225757ed80bf54bad6416b</sha1>
<cve>CVE-2020-11023</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to Kotlin from 1.4-M1 to 1.4-RC. No vulnerability as using Kotlin ≥ 1.4.0
]]></notes>
<gav regex="true">^org\.jetbrains\.(kotlin|dokka):kotlin-.*:.*$</gav>
<cve>CVE-2020-15824</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to Kotlin before 1.4.21. No vulnerability as using Kotlin ≥ 1.4.30
]]></notes>
<gav regex="true">^org\.jetbrains\.(kotlin|dokka):kotlin-.*:.*$</gav>
<cve>CVE-2020-29582</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to dokka. No vulnerability as using Kotlin ≥ 1.3.30
]]></notes>
<gav regex="true">^org\.jetbrains\.dokka:dokka-fatjar:.*$</gav>
<cve>CVE-2019-10101</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to dokka. No vulnerability as using Kotlin ≥ 1.3.30
]]></notes>
<gav regex="true">^org\.jetbrains\.dokka:dokka-fatjar:.*$</gav>
<cve>CVE-2019-10102</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to dokka. No vulnerability as using Kotlin ≥ 1.3.30
]]></notes>
<gav regex="true">^org\.jetbrains\.dokka:dokka-fatjar:.*$</gav>
<cve>CVE-2019-10103</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to dokka. No vulnerability as using Kotlin ≥ 1.4.0
]]></notes>
<gav regex="true">^org\.jetbrains\.dokka:dokka-fatjar:.*$</gav>
<cve>CVE-2020-15824</cve>
</suppress>
<suppress>
<notes><![CDATA[
CVE relates to dokka which controls the input to this library
]]></notes>
<gav regex="true">^com\.google\.protobuf:protobuf-java:.*$</gav>
<cve>CVE-2015-5237</cve>
</suppress>
</suppressions>