chore: update suppressions

aaron-steinfeld · aaron-steinfeld · commit ae4ea800be71 · 2026-04-27T08:47:17.000-04:00
diff --git a/dependency-check/global-suppressions.xml b/dependency-check/global-suppressions.xml
@@ -165,4 +165,14 @@
     <packageUrl regex="true">^pkg:maven/io\.grpc/grpc-.*@.*$</packageUrl>
     <cve>CVE-2026-33186</cve>
   </suppress>
+  <suppress>
+    <notes><![CDATA[
+   CVE-2026-5795 affects Jetty JASPIAuthenticator (jetty-jaspi module).
+   Suppressing for all other Jetty modules.
+  ]]></notes>
+    <packageUrl regex="true">
+      ^pkg:maven/org\.eclipse\.jetty(\..*)?/(?!.*jaspi).*@.*$
+    </packageUrl>
+    <cve>CVE-2026-5795</cve>
+  </suppress>
 </suppressions>
