Chore: [AEA-0000] - Add suppression for CVE-2025-9230 (#1604)

kris-szlapa · web-flow · commit f3db19376595 · 2025-10-06T10:41:25.000Z
## Summary

- Routine Change

### Details

This pull request adds suppression for CVE-2025-9230, as it is not
applicable. We do not use password-based encryption in CMS messages.
diff --git a/packages/cdk/resources/InspectorFilters.ts b/packages/cdk/resources/InspectorFilters.ts
@@ -42,7 +42,10 @@ export class InspectorFilters extends Construct {
       "CVE-2025-52520", // https://nvd.nist.gov/vuln/detail/cve-2025-52520
       "CVE-2025-48989", // https://nvd.nist.gov/vuln/detail/cve-2025-48989
       "CVE-2025-53506", // https://nvd.nist.gov/vuln/detail/cve-2025-53506
-      "CVE-2025-57319" // https://nvd.nist.gov/vuln/detail/cve-2025-57319 - this is a false positive and is not an issue
+      "CVE-2025-57319", // https://nvd.nist.gov/vuln/detail/cve-2025-57319
+      // this is a false positive and is not an issue
+      "CVE-2025-9230" // https://nvd.nist.gov/vuln/detail/CVE-2025-9230
+      // not applicable, we do not use password-based encryption in CMS messages
     ]
 
     for (const cve of cvesToSuppress){
