diff --git a/core/src/main/resources/dependencycheck-base-suppression.xml b/core/src/main/resources/dependencycheck-base-suppression.xml
index 92a7dea1911..f08a05ea904 100644
--- a/core/src/main/resources/dependencycheck-base-suppression.xml
+++ b/core/src/main/resources/dependencycheck-base-suppression.xml
@@ -599,11 +599,14 @@
^pkg:maven/org\.springframework\.boot/spring\-boot\-starter\-oauth2\-client@.*$
cpe:/a:pivotal:spring_security_oauth
cpe:/a:pivotal:spring_security
+ cpe:/a:pivotal_software:spring_security_oauth
+ cpe:/a:pivotal_software:spring_security
+ cpe:/a:vmware:spring_security
.*(\.(dll|jar|ear|war|pom|nupkg|nuspec|aar)|pom\.xml|package.json|packages.config)$
cpe:/a:sandbox:sandbox
@@ -743,6 +747,7 @@
cpe:/a:docker:docker
cpe:/a:travis-ci:travis_ci
cpe:/a:storage_project:storage
+ cpe:/a:pivotal_software:rabbitmq
- ^pkg:maven/org\.springframework\.security/spring\-security\-rsa@.*$
+ Suppresses false positives per issue #1665, #3219, #4562.
+ ]]>
+ ^pkg:maven/org\.springframework\.security/spring-security-rsa.*$
cpe:/a:pivotal:spring_security_oauth
cpe:/a:pivotal_software:spring_security
+ cpe:/a:vmware:spring_security
+ cpe:/a:vmware:springsource_spring_security
+ cpe:/a:security-framework_project:security-framework
- ^org\.springframework\.security\.oauth:spring-security-oauth2:.*$
+ ^pkg:maven/org\.springframework\.security\.oauth/spring-security-oauth2@.*$
cpe:/a:pivotal_software:spring_security
+ cpe:/a:vmware:spring_security
cpe:/a:vmware:springsource_spring_security
cpe:/a:security-framework_project:security-framework
-
-
- ^pkg:maven/org\.springframework\.security/spring-security-rsa.*$
- cpe:/a:pivotal_software:spring_security
- cpe:/a:vmware:springsource_spring_security
- cpe:/a:security-framework_project:security-framework
-
^org\.springframework\.boot:spring-boot-starter-security:.*$
cpe:/a:pivotal_software:spring_security
+ cpe:/a:vmware:spring_security
+ cpe:/a:vmware:springsource_spring_security
- ^pkg:maven/com\.google\.http-client/google-http-client-gson@.*$
+ ^pkg:maven/com\.google\.(?!code\.gson).*/.*gson.*$
cpe:/a:google:gson
@@ -5327,6 +5329,65 @@
+ ^pkg:maven/org\.apache\.tomcat/jakartaee-migration@.*$
+ cpe:/a:apache:tomcat
+
+
+
+ ^pkg:npm/archiver@.*$
+ cpe:/a:archiver_project:archiver
+
+
+
+ ^pkg:maven/tyrex/tyrex@.*$
+ cpe:/a:sun:j2ee
+
+
+
+ ^pkg:maven/io\.zipkin\.aws/brave-propagation-aws@.*$
+ cpe:/a:brave:brave
+
+
+
+ ^pkg:maven/org\.springframework\.security\.extensions/spring-security-saml2-core@.*$
+ cpe:/a:saml_project:saml
+ cpe:/a:vmware:spring_security
+
+
+
+ ^pkg:maven/io\.quarkus/quarkus-micrometer-registry-prometheus@.*$
+ cpe:/a:prometheus:prometheus
+
+
+
+ ^pkg:maven/org\.apache\.activemq/activemq\-artemis\-native@.*$
+ cpe:/a:apache:activemq
+ cpe:/a:apache:activemq_artemis
+
+
+
+ ^pkg:maven/org\.springframework\.ws/spring\-ws\-security@.*$
+ cpe:/a:vmware:spring_security
+ cpe:/a:pivotal_software:spring_security
+
+
+
^pkg:maven/org\.springframework\.cloud/spring-cloud-dataflow-rest-.*$