suppressed-cves.xml
<?xml version="1.0" encoding="UTF-8"?>
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.2.xsd">
<suppress>
<notes><![CDATA[false positive, CVE concerns the ability for remote attachers to execute arbitrary code via a
crafted applet on Apple Java for Mac OS X, relatedto the com.sun.medialib.mlib package.]]>
</notes>
<cve>CVE-2010-0538</cve>
</suppress>
<suppress>
<notes><![CDATA[false positive, CVE concerns an XML deserialization vulnerability that was discovered in slf4j's
EventData, which accepts an XML serialized string and can lead to arbitrary code execution. The vulnerability
is specifically in slf4j-ext and not in slf4j-api]]>
</notes>
<cve>CVE-2018-8088</cve>
</suppress>
</suppressions>