CVE suppression list

Specify a list of CVE identifiers to exclude from vulnerability threshold calculations and EPSS assessment. These CVEs will be detected and reported but will not contribute to build failure decisions.

Supported Formats:
Behavior:

Note: CVE IDs must follow the format CVE-YYYY-NNNN (e.g., CVE-2023-1234)