A vulnerable application dependency is ignored if its name matches any of the items in {@code exclusions}. An asterisk (*) in the dependency pattern acts as a wildcard and matches zero or more characters.
A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleCvssV2Score and below maxPermissibleCvssV3Score. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
A vulnerable application dependency is ignored if the score of its associated Vulnerability is below maxPermissibleSeverity.
Configuration for a vulnerability audit. A vulnerable application dependency is ignored if its name does match any of the items in {@code exclusions}, or all of the associated Vulnerabilies have a CVSS v2 score below {@code maxPermissibleCvssV2Score} and a CVSS v3 score below {@code maxPermissibleCvssV3Score}. type: object