Extend OWASP suppressions by three months

NSeydoux · NSeydoux · commit 1bd6c6b62693 · 2025-08-25T16:37:15.000+02:00
This extends the OWASP suppressions that expired recently, to be checked
against in three months.
diff --git a/build-tools/owasp/suppressions.xml b/build-tools/owasp/suppressions.xml
@@ -38,23 +38,23 @@
   </suppress>
 
   <!-- Suppressed vulnerabilities. These need monthly review. -->
-  <suppress until="2025-08-10Z">
+  <suppress until="2025-11-10Z">
     <notes><![CDATA[
         This vulnerability affects a transitive dependency of the test module but is not relevant
         for how it is used in the context of the Java Client Libraries.
     ]]></notes>
     <packageUrl regex="true">^pkg:maven/net\.minidev/json-smart@.*$</packageUrl>
     <vulnerabilityName>CVE-2024-57699</vulnerabilityName>
   </suppress>
-  <suppress until="2025-08-10Z">
+  <suppress until="2025-11-10Z">
     <notes><![CDATA[
         This vulnerability affects a transitive dependency of the test module but is not relevant
         for how it is used in the context of the Java Client Libraries.
     ]]></notes>
     <packageUrl regex="true">^pkg:maven/org\.eclipse\.jetty\.http2/http2-common@.*$</packageUrl>
     <cve>CVE-2024-6763</cve>
   </suppress>
-  <suppress until="2025-08-10Z">
+  <suppress until="2025-11-10Z">
     <notes><![CDATA[
         This vulnerability affects a transitive dependency of the test module but is not relevant
         for how it is used in the context of the Java Client Libraries.
