summaryrefslogtreecommitdiffhomepage
path: root/android/test/test-suppression.xml
blob: 2e379e9062297839ae5cc54d8d7d6d38817b6b4b (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
    <suppress until="2024-06-01Z">
        <notes><![CDATA[
        This CVE only affect the leakCanary build type which is limited to memory leak testing etc.
        This will most likely be solved by bumping to a future version of the leakcanary dependency
        where a fixed version of okio is used.
        https://nvd.nist.gov/vuln/detail/CVE-2023-3635
        ]]></notes>
        <packageUrl regex="true">^pkg:maven/com\.squareup\.okio/okio.*@.*$</packageUrl>
        <cve>CVE-2023-3635</cve>
    </suppress>
    <suppress until="2024-09-01Z">
        <notes><![CDATA[
            False-positive related to Drupal rather than Android development.
            https://nvd.nist.gov/vuln/detail/CVE-2014-9152
        ]]></notes>
        <packageUrl regex="true">^pkg:maven/androidx\.test\.services/storage@.*$</packageUrl>
        <cve>CVE-2014-9152</cve>
    </suppress>
</suppressions>