False positives CVE-2021-27478 CVE-2021-27482 CVE-2021-27498 CVE-2021-27500 EIPStackGroup OpENer EtherNet/IP project matching npm opener package #932
Labels
bug
Something isn't working
changelog-ignore
Don't include this issue in the release changelog
false-positive
What happened:
We have opener in our dependencies. When scanning our repository we get false positive on EIPStackGroup OpENer EtherNet/IP project.
What you expected to happen:
I expect npm opener package not to match CVEs against "EIPStackGroup OpENer EtherNet/IP" project.
How to reproduce it (as minimally and precisely as possible):
Anything else we need to know?:
Environment:
grype version
:cat /etc/os-release
or similar):The text was updated successfully, but these errors were encountered: