From 3eb5ed2573e438bc8a21053f494b34f980747948 Mon Sep 17 00:00:00 2001
From: Niall Byrne <9848926+niall-byrne@users.noreply.github.com>
Date: Fri, 20 Dec 2024 09:44:51 -0500
Subject: [PATCH] build(CONTAINER): whitelist known vulnerability

---
 .grype.yaml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.grype.yaml b/.grype.yaml
index 7165d6ab..16199b09 100644
--- a/.grype.yaml
+++ b/.grype.yaml
@@ -1,4 +1,5 @@
 ---
 ignore:
-  - vulnerability: CVE-2023-24531  # vale2 was built with an older version of golang
-  - vulnerability: CVE-2024-24790  # vale2 was built with an older version of golang
+  - vulnerability: CVE-2023-24531-stdlib  # vale2 was built with an older version of golang
+  - vulnerability: CVE-2024-24790-stdlib  # vale2 was built with an older version of golang
+  - vulnerability: GHSA-v778-237x-gjrc  # A cryptography library used in vale and vale3 needs updating.