Ian P
Reputation: 1
Avoid a path / jar in MANIFEST.MF from being used so that Checkmarkxone does not trigger a scan alert
I am new to Java. I have been handed down some 8 year old code and now we have started using CheckmarkxOne and its triggerring a scan alert on Package Path : org.dom4j:[email protected] and says the latest version is 2.1.3.redhat-00001. File path target/lib/logback-classic-1.5.8/META-INF/maven/ch.qos.logback/logback-classic/pom.xml. Need to get this alert to be nullified.
Also have another one org.slf4j:slf4j-ext 1.7.25, CheckMarkx1 says 1.7.25 Your Version(Mar 16, 2017) 2.0.16 Newest version(Aug 10, 2024). Package Path : org.slf4j:slf4j-ext @ 1.7.25. I have made modifications in my pom.xml , but it still flags this error.
Manifest-Version: 1.0
Created-By: Maven JAR Plugin 3.3.0
Upvotes: 0
Views: 59
Answers (0)
Related Questions
- reading MANIFEST.MF file from jar file using JAVA
- How to run a class from Jar which is not the Main-Class in its Manifest file
- flattened pom is not being used?
- Selenium installation failing with missing org.openqa.selenium
- Does the Class-Path in the MANIFEST.MF can only include jar Files?
- Class-Path not getting write to MANIFEST.MF file on jar creation
- onActivityResult not being trigger from Alert Dialog FIXED
- Fail in building and packaging logback-android
- MANIFEST.MF file for JAR Used in Web App?