Details
-
Improvement
-
Resolution: Fixed
-
Major
-
15.5
-
None
Description
Currently, all security issues are fetch from remote security databases.
The list of found security vulnerabilities is then listed blindly.
This can lead to the listing of false positives (i.e., vulnerabilities we know are safe in our context, but are still linked to libraries we depend on).
It should be possible to filter them out.
Attachments
Issue Links
- depends on
-
XWIKI-21030 List core security issues on the security vulnerability list
- Closed