# org.eclipse.hawkbit:*
# this trivy finding is false positive since the current master (and other, new temporary, branches) doesn't contain http dependencies anymore
# trivy detects 0-SNAPSHOT version and could not 'understand' that it is newer then 0.3.0M2 (since which the http dependencies were removed)
CVE-2019-10240