Skip to content

Commit

Permalink
Backport of security: triage false positive for go-jose/v3 into relea…
Browse files Browse the repository at this point in the history
…se/1.17.x (#20904)

backport of commit c8d6b25

Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
  • Loading branch information
hc-github-team-consul-core and zalimeni authored Mar 26, 2024
1 parent f9f0416 commit 3e2302b
Show file tree
Hide file tree
Showing 2 changed files with 22 additions and 0 deletions.
11 changes: 11 additions & 0 deletions .release/security-scan.hcl
Original file line number Diff line number Diff line change
Expand Up @@ -67,4 +67,15 @@ binary {
]
}
}

# Triage items that are _safe_ to ignore here. Note that this list should be
# periodically cleaned up to remove items that are no longer found by the scanner.
triage {
suppress {
# N.b. `vulnerabilites` is the correct spelling for this tool.
vulnerabilites = [
"GO-2024-2631", # go-jose/v3@v3.0.3 (false positive)
]
}
}
}
11 changes: 11 additions & 0 deletions scan.hcl
Original file line number Diff line number Diff line change
Expand Up @@ -22,4 +22,15 @@ repository {
secrets {
all = true
}

# Triage items that are _safe_ to ignore here. Note that this list should be
# periodically cleaned up to remove items that are no longer found by the scanner.
triage {
suppress {
# N.b. `vulnerabilites` is the correct spelling for this tool.
vulnerabilites = [
"GO-2024-2631", # go-jose/v3@v3.0.3 (false positive)
]
}
}
}

0 comments on commit 3e2302b

Please sign in to comment.