Hi authors,
I was working with this package for couple of months now. When I ran a vulnerability scan, I found out that this package has a vulnerability listed as CVE-2022-32511.
I am confused after reading the CVE, is it a false positive for jmespath.py or it's for jmespath.rb ?

That CVE is for the Ruby library, this repo is for the Python one. You probably want to reopen this issue at https://github.com/jmespath/jmespath.rb