Skip to content

Commit 1e3a83b

Browse files
chadlwilsonchadlwilson
authored
fix(fp): Fix broad Python regex to suppress packages ending in -python (#7980)
Signed-off-by: Chad Wilson <[email protected]>
1 parent c23b953 commit 1e3a83b

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

core/src/main/resources/dependencycheck-base-suppression.xml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -3880,10 +3880,10 @@
38803880
</suppress>
38813881
<suppress base="true">
38823882
<notes><![CDATA[
3883-
several python-* PyPI packages hit a FP CPE match #3233 & #3017 & #5335
3883+
several python-* PyPI packages hit a FP CPE match #3233 & #3017 & #5335 & #7968
38843884
as Python itself is not a PyPI package suppress it with a broad regex
38853885
]]></notes>
3886-
<packageUrl regex="true">^pkg:pypi/.*python\-.*$</packageUrl>
3886+
<packageUrl regex="true">^pkg:pypi/.*python.*$</packageUrl>
38873887
<cpe>cpe:/a:python:python</cpe>
38883888
<cpe>cpe:/a:python_software_foundation:python</cpe>
38893889
</suppress>

0 commit comments

Comments
 (0)