add another clojure redundant CVE suppression, fix project.matrix NVD…

… artifact

.github/workflows/ci.yml

@@ -64,6 +64,6 @@ jobs:
         if: always()
         uses: actions/upload-artifact@v4
         with:
-          name: nvd-${{ matrix.project.profile }}-${{ github.sha }}
+          name: nvd-${{ matrix.project }}-${{ github.sha }}
           path: ./${{ matrix.project }}/dependency-check/report/*
           retention-days: 1

slipway-jetty10/dependency-check-suppressions.xml

@@ -12,4 +12,9 @@
         <packageUrl regex="true">^pkg:maven/org\.clojure/.*$</packageUrl>
         <cve>CVE-2017-20189</cve>
     </suppress>
+    <suppress>
+        <notes>Clojure false positive</notes>
+        <packageUrl regex="true">^pkg:maven/ring/ring\-codec@.*$</packageUrl>
+        <cve>CVE-2017-20189</cve>
+    </suppress>
 </suppressions>

slipway-jetty11/dependency-check-suppressions.xml

@@ -12,4 +12,9 @@
         <packageUrl regex="true">^pkg:maven/org\.clojure/.*$</packageUrl>
         <cve>CVE-2017-20189</cve>
     </suppress>
+    <suppress>
+        <notes>Clojure false positive</notes>
+        <packageUrl regex="true">^pkg:maven/ring/ring\-codec@.*$</packageUrl>
+        <cve>CVE-2017-20189</cve>
+    </suppress>
 </suppressions>

slipway-jetty9/dependency-check-suppressions.xml

@@ -12,4 +12,9 @@
         <packageUrl regex="true">^pkg:maven/org\.clojure/.*$</packageUrl>
         <cve>CVE-2017-20189</cve>
     </suppress>
+    <suppress>
+        <notes>Clojure false positive</notes>
+        <packageUrl regex="true">^pkg:maven/ring/ring\-codec@.*$</packageUrl>
+        <cve>CVE-2017-20189</cve>
+    </suppress>
 </suppressions>