Set an exclusion from the report page

In the Security section, find the desired vulnerability, open the Actions tab and click on one of the options:

In the Stability section, click on the Ignore button related to the library you want to ignore:

In the Licensing section, click on the Exclude button related to the library you want to exclude:

When required, remember to type a meaningful description before confirming the exclusion:

Trust a component

In the security assessment, it is also possible to mark a specific component as Trusted so that all the transitive vulnerabilities, the ones carried by its dependencies, dot not affect the security score of the project.

To mark a component as Trusted simply open the Hierarchy tab (if present), hover on the component to mark as Trusted and a "Trust component" button will appear.

When required, remember to type a meaningful description before confirming the exclusion:

This type exclusion will, in every case, trigger a recompute of the security section of the report.