chore: update suppressions for 2024-08-21 - OpenRewrite dependency vu…

…lnerability report (#19)
openrewrite · Aug 22, 2024 · d0dec93 · d0dec93
1 parent e98fd8e
commit d0dec93
Showing 1 changed file with 16 additions and 2 deletions.
diff --git a/suppressions.xml b/suppressions.xml
@@ -1,6 +1,6 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
-    <suppress until="2024-09-25Z">
+    <suppress until="2025-03-25Z">
         <notes><![CDATA[
    file name: quarkus-update-recipes-1.0.19.jar
        sev: HIGH
@@ -9,7 +9,7 @@
         <packageUrl regex="true">^pkg:maven/io\.quarkus/quarkus-update-recipes@.*$</packageUrl>
         <cpe>cpe:/a:quarkus:quarkus</cpe>
     </suppress>
-    <suppress until="2024-09-25Z">
+    <suppress until="2025-03-25Z">
         <notes><![CDATA[
    file name: testng-7.5.jar
        sev: HIGH
@@ -18,4 +18,18 @@
         <packageUrl regex="true">^pkg:maven/org\.testng/testng@.*$</packageUrl>
         <vulnerabilityName>CVE-2022-4065</vulnerabilityName>
     </suppress>
+    <suppress until="2025-03-25Z">
+        <notes><![CDATA[
+            file name: camel-upgrade-recipes-0.1.jar
+            sev: CRITICAL
+            reason: False positive. Reference only
+        ]]></notes>
+        <packageUrl regex="true">^pkg:maven/org\.apache\.camel/camel-upgrade-recipes@.*$</packageUrl>
+        <cve>CVE-2015-5344</cve>
+        <cve>CVE-2017-3159</cve>
+        <cve>CVE-2014-0003</cve>
+        <cve>CVE-2014-0002</cve>
+        <cve>CVE-2019-0188</cve>
+        <cve>CVE-2017-5643</cve>
+    </suppress>
 </suppressions>