Ignore specific vulnerabilities globally or in specific context
U1: Ignore vulnerability globally. There a know false positives that must be suppressed (GHSA-hqfh-jh33-mj7r, GHSA-4wrc-f8pq-fpqp, GHSA-rr2f-jhmq-594w for example are false positives that must be removed from all results)
U2: Ignore vulnerability in specific context, e.g. A CVE is considered a false positive in one app, but not in another. If a rule on any data in image, packages, findings, and context matches, the finding needs to be removed
Ignore specific vulnerabilities globally or in specific context
U1: Ignore vulnerability globally. There a know false positives that must be suppressed (GHSA-hqfh-jh33-mj7r, GHSA-4wrc-f8pq-fpqp, GHSA-rr2f-jhmq-594w for example are false positives that must be removed from all results)
U2: Ignore vulnerability in specific context, e.g. A CVE is considered a false positive in one app, but not in another. If a rule on any data in image, packages, findings, and context matches, the finding needs to be removed