We are using the dependency-check maven plugin to analyze vulnerabilities in the project. Project structure:
ordermpd
- order-mpd-common
- order-mpd-app
- order-mpd-domain
Problem is : The plugin is marking my own maven modules i.e. order-mpd-common, order-mpd-app & order-mpd-domain itself as vulnerabilities.
Is there some configuration property to tell the plugin to avoid marking project modules itself as vulnerability?
