Suppress CVE-2025-11143

Jetty is used only locally
2026-05-14 00:31:27 +00:00 · 2026-03-08 17:58:46 +01:00
parent e583b70931
commit 8ca6946fe6
1 changed files with 9 additions and 0 deletions
--- a/suppression.xml
+++ b/suppression.xml
@@ -99,5 +99,14 @@
 		<packageUrl regex="true">^pkg:maven/org\.purejava/flatpak-update-portal@.*$</packageUrl>
 		<cpe>cpe:/a:flatpak:flatpak</cpe>
 	</suppress>
+
+	<suppress>
+		<notes><![CDATA[
+		Jetty is used as a local server only.
+   ]]></notes>
+		<packageUrl regex="true">^pkg:maven/org\.eclipse\.jetty/jetty-.*$</packageUrl>
+		<vulnerabilityName>CVE-2025-11143</vulnerabilityName>
+		<cve>CVE-2025-11143</cve>
+	</suppress>
 	
 </suppressions>