From 508178c1f69dd6737525efc15219981e3a831f33 Mon Sep 17 00:00:00 2001
From: Rajeswari Krishnakumar <krajeswaribtech@gmail.com>
Date: Fri, 1 Feb 2019 17:51:19 +0530
Subject: [PATCH 1/2] Suppressing the vulnerabilities

---
 config/security-suppressions.xml | 30 ++++++++++++++++++++++++++++++
 gradle/security.gradle           |  3 ++-
 2 files changed, 32 insertions(+), 1 deletion(-)
 create mode 100644 config/security-suppressions.xml

diff --git a/config/security-suppressions.xml b/config/security-suppressions.xml
new file mode 100644
index 0000000..40829e0
--- /dev/null
+++ b/config/security-suppressions.xml
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.1.xsd">
+    <suppress>
+        <notes><![CDATA[
+        Suppressing the CVE for json-patch
+        ]]></notes>
+        <cve>CVE-2018-14632</cve>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[
+        Suppressing the CVE for Guava
+        ]]></notes>
+        <cve>CVE-2018-10237</cve>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[
+        Suppressing the CVE for jackson-databind
+        ]]></notes>
+        <cve>CVE-2018-1000873</cve>
+        <cve>CVE-2018-14719</cve>
+        <cve>CVE-2018-14720</cve>
+        <cve>CVE-2018-14721</cve>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[
+        Suppressing the CVE for slf4j-ext
+        ]]></notes>
+        <cve>CVE-2018-8088</cve>
+    </suppress>
+</suppressions>
diff --git a/gradle/security.gradle b/gradle/security.gradle
index ef61590..6efb544 100644
--- a/gradle/security.gradle
+++ b/gradle/security.gradle
@@ -5,6 +5,7 @@ check.dependsOn dependencyCheckAnalyze
 dependencyCheck {
     cveValidForHours = 8
     failBuildOnCVSS = 5
+    suppressionFiles = ["config/security-suppressions.xml"]
     analyzers {
         nexusEnabled = false
         pyDistributionEnabled = false
@@ -17,4 +18,4 @@ dependencyCheck {
         nuspecEnabled = false
         assemblyEnabled = false
     }
-}
\ No newline at end of file
+}

From 0ad86de0850f4661f77002fadfb9e4983655e30a Mon Sep 17 00:00:00 2001
From: Rajeswari Krishnakumar <krajeswaribtech@gmail.com>
Date: Fri, 1 Feb 2019 18:03:15 +0530
Subject: [PATCH 2/2] Suppressing more vulnerabilities

---
 config/security-suppressions.xml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/config/security-suppressions.xml b/config/security-suppressions.xml
index 40829e0..a33823f 100644
--- a/config/security-suppressions.xml
+++ b/config/security-suppressions.xml
@@ -20,6 +20,9 @@
         <cve>CVE-2018-14719</cve>
         <cve>CVE-2018-14720</cve>
         <cve>CVE-2018-14721</cve>
+        <cve>CVE-2018-19360</cve>
+        <cve>CVE-2018-19361</cve>
+        <cve>CVE-2018-19362</cve>
     </suppress>
     <suppress>
         <notes><![CDATA[