[FP]: zio-akka-cluster flagged

jeremylong / DependencyCheck

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

https://owasp.org/www-project-dependency-check/

Apache License 2.0

6.35k stars 1.27k forks source link

[FP]: zio-akka-cluster flagged #5571

Open Philippus opened 1 year ago

Philippus commented 1 year ago

Package URl

pkg:maven/dev.zio/zio-akka-cluster_2.13@0.2.0

CPE

cpe:2.3:a:akka:akka:0.2.0:*:*:*:*:*:*:*

CVE

CVE-2017-1000034

ODC Integration

None

ODC Version

8.1.2

Description

No response

github-actions[bot] commented 1 year ago

Maven Coordinates

<dependency>
   <groupId>dev.zio</groupId>
   <artifactId>zio-akka-cluster_2.13</artifactId>
   <version>0.2.0</version>
</dependency>

Suppression rule:

<suppress base="true">
   <notes><![CDATA[
   FP per issue #5571
   ]]></notes>
   <packageUrl regex="true">^pkg:maven/dev\.zio/zio-akka-cluster_2\.13@.*$</packageUrl>
   <cpe>cpe:/a:akka:akka</cpe>
</suppress>

Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/4476642794