Ignore requests security vulnerability

operator-framework · Jun 27, 2024 · 2e0f3ec · 2e0f3ec
1 parent 57a71e0
commit 2e0f3ec
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 2 deletions.
diff --git a/images/ansible-operator/Dockerfile b/images/ansible-operator/Dockerfile
@@ -30,7 +30,10 @@ RUN set -e && yum clean all && rm -rf /var/cache/yum/* \
   #  - https://github.com/advisories/GHSA-f6pv-j8mr-w6rr \
   #  - https://github.com/dbt-labs/dbt-core/issues/10250 \
   #  - https://data.safetycli.com/v/70612/97c/ \
-  && pipenv check --ignore 70612 \
+  # NOTE: This ignored vulnerability (71064) was detected in requests, \
+  # but the upgraded version doesn't support the use case (protocol we are using).\
+  # Ref: https://github.com/operator-framework/ansible-operator-plugins/pull/67#issuecomment-2189164688
+  && pipenv check --ignore 70612 --ignore 71064 \
   && yum remove -y gcc libffi-devel openssl-devel python39-devel \
   && yum clean all \
   && rm -rf /var/cache/yum

diff --git a/images/ansible-operator/pipfile.Dockerfile b/images/ansible-operator/pipfile.Dockerfile
@@ -26,7 +26,10 @@ RUN set -e && yum clean all && rm -rf /var/cache/yum/* \
   #  - https://github.com/advisories/GHSA-f6pv-j8mr-w6rr \
   #  - https://github.com/dbt-labs/dbt-core/issues/10250 \
   #  - https://data.safetycli.com/v/70612/97c/ \
-  && pipenv check --ignore 70612 \
+  # NOTE: This ignored vulnerability (71064) was detected in requests, \
+  # but the upgraded version doesn't support the use case (protocol we are using).\
+  # Ref: https://github.com/operator-framework/ansible-operator-plugins/pull/67#issuecomment-2189164688
+  && pipenv check --ignore 70612 --ignore 71064 \
   && yum remove -y gcc libffi-devel openssl-devel python39-devel \
   && yum clean all \
   && rm -rf /var/cache/yum