Skip to content

Commit

Permalink
Ignore non-impactful runc CVE (#1047)
Browse files Browse the repository at this point in the history 
Signed-off-by: Natalie Arellano <narellano@vmware.com>
  • Loading branch information
@natalieparellano
natalieparellano committed Mar 28, 2023
1 parent dc7b426 commit a8db930
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions .grype.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
ignore:
- vulnerability: CVE-2015-5237 # false positive, see https://github.com/anchore/grype/issues/558
- vulnerability: CVE-2021-22570 # false positive, see https://github.com/anchore/grype/issues/558
- vulnerability: GHSA-vpvm-3wq2-2wvm # unpatched as of 3/28/23, non-impactful as the lifecycle doesn't create containers

0 comments on commit a8db930

Please sign in to comment.