From f91c775760e0f60742029a96fd604edc8b3c8a27 Mon Sep 17 00:00:00 2001 From: "Mark S. Lewis" Date: Wed, 4 Oct 2023 00:55:30 +0100 Subject: [PATCH] Reduce frequency of vulnerability scan to weekly Also suppress a false positive vulnerability detection. Signed-off-by: Mark S. Lewis --- .github/workflows/vulnerability-scan.yml | 2 +- dependency-suppressions.xml | 7 +++++++ pom.xml | 2 +- 3 files changed, 9 insertions(+), 2 deletions(-) diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml index 9493a6dd..220ab447 100644 --- a/.github/workflows/vulnerability-scan.yml +++ b/.github/workflows/vulnerability-scan.yml @@ -2,7 +2,7 @@ name: "Security vulnerability scan" on: schedule: - - cron: "20 23 * * *" + - cron: "20 23 * * 0" jobs: scan: diff --git a/dependency-suppressions.xml b/dependency-suppressions.xml index d9909b8d..a9e91f32 100644 --- a/dependency-suppressions.xml +++ b/dependency-suppressions.xml @@ -48,4 +48,11 @@ ^pkg:maven/com\.ibm\.cloud/cloudant(-common)?@.*$ CVE-2023-26268 + + + ^pkg:maven/io\.opentelemetry\.instrumentation/opentelemetry\-grpc\-1\.6@.*$ + CVE-2023-4785 + diff --git a/pom.xml b/pom.xml index 3764ba22..efbfebc6 100644 --- a/pom.xml +++ b/pom.xml @@ -364,7 +364,7 @@ org.owasp dependency-check-maven - 8.3.1 + 8.4.0 true true