ci: OSV scanner override (#13099)

* chore: ignore osv-scanner vulns not exploitable in Argo CD Signed-off-by: Justin Marquis <[email protected]> * fix linebreak Signed-off-by: Justin Marquis <[email protected]> --------- Signed-off-by: Justin Marquis <[email protected]>
argoproj · Apr 4, 2023 · a0e47e5 · a0e47e5
1 parent f738b80
commit a0e47e5
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 0 deletions.
diff --git a/ui-test/osv-scanner.toml b/ui-test/osv-scanner.toml
@@ -0,0 +1,15 @@
+[[IgnoredVulns]]
+id = "GHSA-93q8-gq69-wqmw"
+reason = "CVE-2021-3807 Code is only run client-side in the swagger-ui endpoint. No risk of server-side DoS."
+
+[[IgnoredVulns]]
+id = "GHSA-36fh-84j7-cv5h"
+reason = "Used in testing, does not affect a release"
+
+[[IgnoredVulns]]
+id = "GHSA-f8q6-p94x-37v3"
+reason = "Used in testing, does not affect a release"
+
+[[IgnoredVulns]]
+id = "GHSA-qrpm-p2h7-hrv2"
+reason = "Used in testing, does not affect a release"
diff --git a/ui/osv-scanner.toml b/ui/osv-scanner.toml
@@ -0,0 +1,3 @@
+[[IgnoredVulns]]
+id = "GHSA-93q8-gq69-wqmw"
+reason = "CVE-2021-3807 Code is only run client-side in the swagger-ui endpoint. No risk of server-side DoS."