Fix other false positives from dependency-check Update dependency-check to 12.1.6 to include https://github.com/dependency-check/DependencyCheck/pull/7963.

commit: 72c139b3f31a3d77cd88f8412bdcdad2eb47a7a1 [log] [tgz]
author: Konrad Windszus <kwin@apache.org> Thu Sep 25 18:06:59 2025 +0200
committer: Konrad Windszus <kwin@apache.org> Thu Sep 25 18:06:59 2025 +0200
tree: 426fa6e88504ca81ecb71ec63610f45a0a774706
parent: d0dcdbd26cc783a44c4d98230317aa749edfb1cb [diff]
diff --git a/parent/pom.xml b/parent/pom.xml
index c983f6d..ef51c7a 100644
--- a/parent/pom.xml
+++ b/parent/pom.xml

@@ -268,7 +268,7 @@
                 <plugin>
                     <groupId>org.owasp</groupId>
                     <artifactId>dependency-check-maven</artifactId>
-                    <version>12.1.0</version>
+                    <version>12.1.6</version>
                     <executions>
                         <execution>
                             <goals>

diff --git a/suppressions.xml b/suppressions.xml
index 406b15e..e84f980 100644
--- a/suppressions.xml
+++ b/suppressions.xml

@@ -82,7 +82,7 @@
        <notes><![CDATA[
        file name: jackrabbit-jcr-commons-2.20.17.jar with JNDI usage, not used in FileVault
        ]]></notes>
-       <packageUrl regex="true">^pkg:maven/org\.apache\.jackrabbit/jackrabbit-jcr-commons@.*$</packageUrl>
-       <vulnerabilityName>CVE-2025-58782</vulnerabilityName>
+       <packageUrl regex="true">^pkg:maven/org\.apache\.jackrabbit/jackrabbit-.*$</packageUrl>
+       <cve>CVE-2025-58782</cve>
     </suppress>
 </suppressions>
\ No newline at end of file
commit	72c139b3f31a3d77cd88f8412bdcdad2eb47a7a1	[log] [tgz]
author	Konrad Windszus <kwin@apache.org>	Thu Sep 25 18:06:59 2025 +0200
committer	Konrad Windszus <kwin@apache.org>	Thu Sep 25 18:06:59 2025 +0200
tree	426fa6e88504ca81ecb71ec63610f45a0a774706
parent	d0dcdbd26cc783a44c4d98230317aa749edfb1cb [diff]