the case of snappy from the test was a real problem where
false positive vulnerabilities for cpe:2.3:a:knplabs:snappy:*:*:*:*:*:*:*:*
were reported, like for example CVE-2023-41330