build(CONTAINER): whitelist known vulnerability

cicd-tools-org · Dec 20, 2024 · 3eb5ed2 · 3eb5ed2
1 parent 1c17e03
commit 3eb5ed2
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/.grype.yaml b/.grype.yaml
@@ -1,4 +1,5 @@
 ---
 ignore:
-  - vulnerability: CVE-2023-24531  # vale2 was built with an older version of golang
-  - vulnerability: CVE-2024-24790  # vale2 was built with an older version of golang
+  - vulnerability: CVE-2023-24531-stdlib  # vale2 was built with an older version of golang
+  - vulnerability: CVE-2024-24790-stdlib  # vale2 was built with an older version of golang
+  - vulnerability: GHSA-v778-237x-gjrc  # A cryptography library used in vale and vale3 needs updating.