raboof opened a new pull request, #15054: URL: https://github.com/apache/kafka/pull/15054
This avoids `gradle dependencyCheckAggregate` from reporting on advisories in build-time dependencies (e.g. CVE-2023-46122) which typically should not affect us. I checked that this does not prevent advisories in 'regular' dependencies from being reported (but there currently are none). ### Committer Checklist (excluded from commit message) - [ ] Verify design and implementation - [ ] Verify test coverage and CI build status - [ ] Verify documentation (including upgrade notes) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: jira-unsubscr...@kafka.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
