diff options
| author | David Göransson <david.goransson90@gmail.com> | 2023-12-14 16:02:07 +0100 |
|---|---|---|
| committer | Albin <albin@mullvad.net> | 2023-12-14 16:53:22 +0100 |
| commit | 0d4451264d129bc6bcc8ae30bf12dc807f8ab3bc (patch) | |
| tree | 938f7c3568f094b31d374e94b515621542550962 /android/config | |
| parent | 3eddc8dcafe314fcb218c999b8108bc4f5c03e13 (diff) | |
| download | mullvadvpn-0d4451264d129bc6bcc8ae30bf12dc807f8ab3bc.tar.xz mullvadvpn-0d4451264d129bc6bcc8ae30bf12dc807f8ab3bc.zip | |
Add compose destinations navigation dependency
Diffstat (limited to 'android/config')
| -rw-r--r-- | android/config/dependency-check-suppression.xml | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/android/config/dependency-check-suppression.xml b/android/config/dependency-check-suppression.xml index 067a8c8d67..c7ec54a5e8 100644 --- a/android/config/dependency-check-suppression.xml +++ b/android/config/dependency-check-suppression.xml @@ -51,4 +51,13 @@ <packageUrl regex="true">^pkg:maven/com\.squareup\.okio/okio@.*$</packageUrl> <cve>CVE-2023-3635</cve> </suppress> + <suppress until="2024-06-01Z"> + <notes><![CDATA[ + This CVE only affect programs using loadXML and is derived from using ksp. + We do not use the loadXML, ksp is used to generate navigation paths in our code + and not for processesing any user input. + ]]></notes> + <packageUrl regex="true">^pkg:maven/com\.google\.devtools\.ksp/symbol\-processing.*@.*$</packageUrl> + <cve>CVE-2018-1000840</cve> + </suppress> </suppressions> |