Skip to content

Commit

Permalink
build: ignore several cves
Browse files Browse the repository at this point in the history
Signed-off-by: Christian Kotzbauer <[email protected]>
  • Loading branch information
ckotzbauer committed Mar 5, 2022
1 parent 3e2a655 commit d37c684
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 0 deletions.
3 changes: 3 additions & 0 deletions .github/grype.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
ignore:
- vulnerability: CVE-2015-5237
- vulnerability: CVE-2021-22570
1 change: 1 addition & 0 deletions .github/workflows/test.yml
Original file line number Diff line number Diff line change
Expand Up @@ -53,3 +53,4 @@ jobs:
with:
scan-target: ghcr.io/ckotzbauer/sbom-operator
fail-on: "medium"
config-file: ".github/grype.yaml"

0 comments on commit d37c684

Please sign in to comment.